suse-su-2024:0855-1
Vulnerability from csaf_suse
Published
2024-03-12 19:46
Modified
2024-03-12 19:46
Summary
Security update for the Linux Kernel
Notes
Title of the patch
Security update for the Linux Kernel
Description of the patch
The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2023-6270: Fixed a use-after-free bug in aoecmd_cfg_pkts (bsc#1218562).
- CVE-2023-52559: Fixed a bug by avoiding memory allocation in iommu_suspend (bsc#1220933).
- CVE-2023-52462: Fixed a security check for attempt to corrupt spilled pointer (bsc#1220325).
- CVE-2023-52467: Fixed a null pointer dereference in of_syscon_register (bsc#1220433).
- CVE-2023-52463: Fixed null pointer dereference in efivarfs (bsc#1220328).
- CVE-2023-52530: Fixed a potential key use-after-free in wifi mac80211 (bsc#1220930).
- CVE-2024-26607: Fixed a probing race issue in sii902x: (bsc#1220736).
- CVE-2024-26591: Fixed re-attachment branch in bpf_tracing_prog_attach (bsc#1220254).
- CVE-2024-26589: Fixed out of bounds read due to variable offset alu on PTR_TO_FLOW_KEYS (bsc#1220255).
- CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187).
- CVE-2023-52340: Fixed ICMPv6 “Packet Too Big” packets force a DoS of the Linux kernel by forcing 100% CPU (bsc#1219295).
- CVE-2024-0607: Fixed 64-bit load issue in nft_byteorder_eval() (bsc#1218915).
- CVE-2023-6817: Fixed use-after-free in nft_pipapo_walk (bsc#1218195).
- CVE-2024-26622: Fixed UAF write bug in tomoyo_write_control() (bsc#1220825).
- CVE-2024-23850: Fixed double free of anonymous device after snapshot creation failure (bsc#1219126).
- CVE-2023-52452: Fixed Fix accesses to uninit stack slots (bsc#1220257).
- CVE-2023-52457: Fixed skipped resource freeing if pm_runtime_resume_and_get() failed (bsc#1220350).
- CVE-2023-52456: Fixed tx statemachine deadlock (bsc#1220364).
- CVE-2023-52451: Fixed access beyond end of drmem array (bsc#1220250).
- CVE-2023-52447: Fixed map_fd_put_ptr() signature kABI workaround (bsc#1220251).
- CVE-2023-52449: Fixed gluebi NULL pointer dereference caused by ftl notifier (bsc#1220238).
- CVE-2021-46923: Fixed reference leakage in fs/mount_setattr (bsc#1220457).
- CVE-2024-26598: Fixed potential UAF in LPI translation cache (bsc#1220326).
- CVE-2024-26603: Fixed infinite loop via #PF handling (bsc#1220335).
- CVE-2023-52445: Fixed use after free on context disconnection (bsc#1220241).
- CVE-2023-52439: Fixed use-after-free in uio_open (bsc#1220140).
- CVE-2023-52443: Fixed crash when parsed profile name is empty (bsc#1220240).
- CVE-2024-26593: Fixed block process call transactions (bsc#1220009).
- CVE-2024-26586: Fixed stack corruption (bsc#1220243).
- CVE-2024-26595: Fixed NULL pointer dereference in error path (bsc#1220344).
- CVE-2023-52464: Fixed possible out-of-bounds string access (bsc#1220330)
- CVE-2023-52448: Fixed kernel NULL pointer dereference in gfs2_rgrp_dump (bsc#1220253).
- CVE-2024-1151: Fixed unlimited number of recursions from action sets (bsc#1219835).
- CVE-2023-5197: Fixed se-after-free due to addition and removal of rules from chain bindings within the same transaction (bsc#1218216).
- CVE-2024-23849: Fixed array-index-out-of-bounds in rds_cmsg_recv (bsc#1219127).
- CVE-2023-52429: Fixed potential DoS in dm_table_create in drivers/md/dm-table.c (bsc#1219827).
- CVE-2024-23851: Fixed crash in copy_params in drivers/md/dm-ioctl.c (bsc#1219146).
The following non-security bugs were fixed:
- ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous events (git-fixes).
- ACPI: button: Add lid disable DMI quirk for Nextbook Ares 8A (git-fixes).
- ACPI: extlog: fix NULL pointer dereference check (git-fixes).
- ACPI: resource: Add ASUS model S5402ZA to quirks (git-fixes).
- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA (git-fixes).
- ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA (git-fixes).
- ACPI: video: Add backlight=native DMI quirk for Apple iMac11,3 (git-fixes).
- ACPI: video: Add backlight=native DMI quirk for Apple iMac12,1 and iMac12,2 (git-fixes).
- ACPI: video: Add backlight=native DMI quirk for Lenovo ThinkPad X131e (3371 AMD version) (git-fixes).
- ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop (git-fixes).
- afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*() (git-fixes).
- afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu() (git-fixes).
- afs: Hide silly-rename files from userspace (git-fixes).
- afs: Increase buffer size in afs_update_volume_status() (git-fixes).
- ahci: asm1166: correct count of reported ports (git-fixes).
- ALSA: Drop leftover snd-rtctimer stuff from Makefile (git-fixes).
- ALSA: firewire-lib: fix to check cycle continuity (git-fixes).
- ALSA: hda/conexant: Add quirk for SWS JS201D (git-fixes).
- ALSA: hda/realtek: Apply headset jack quirk for non-bass alc287 thinkpads (git-fixes).
- ALSA: hda/realtek: cs35l41: Fix device ID / model name (git-fixes).
- ALSA: hda/realtek: cs35l41: Fix order and duplicates in quirks table (git-fixes).
- ALSA: hda/realtek: Enable headset mic on Vaio VJFE-ADL (git-fixes).
- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14-fq0xxx (git-fixes).
- ALSA: hda/realtek: fix mute/micmute LED For HP mt645 (git-fixes).
- ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power (git-fixes).
- ALSA: hda/realtek: Fix the external mic not being recognised for Acer Swift 1 SF114-32 (git-fixes).
- ALSA: usb-audio: Add a quirk for Yamaha YIT-W12TX transmitter (git-fixes).
- ALSA: usb-audio: Add delay quirk for MOTU M Series 2nd revision (git-fixes).
- ALSA: usb-audio: add quirk for RODE NT-USB+ (git-fixes).
- ALSA: usb-audio: Check presence of valid altsetting control (git-fixes).
- ALSA: usb-audio: Ignore clock selector errors for single connection (git-fixes).
- ALSA: usb-audio: More relaxed check of MIDI jack names (git-fixes).
- ALSA: usb-audio: Sort quirk table entries (git-fixes).
- arm64: entry: fix ARM64_WORKAROUND_SPECULATIVE_UNPRIV_LOAD (bsc#1219443)
- arm64: entry: Preserve/restore X29 even for compat tasks (bsc#1219443)
- arm64: entry: Simplify tramp_alias macro and tramp_exit routine (bsc#1219443)
- arm64: errata: Add Cortex-A510 speculative unprivileged load (bsc#1219443) Enable workaround.
- arm64: errata: Add Cortex-A520 speculative unprivileged load (bsc#1219443) Enable workaround without kABI break.
- arm64: errata: Mitigate Ampere1 erratum AC03_CPU_38 at stage-2 (git-fixes) Enable AMPERE_ERRATUM_AC03_CPU_38 workaround without kABI break
- arm64: irq: set the correct node for shadow call stack (git-fixes)
- arm64: irq: set the correct node for VMAP stack (git-fixes)
- arm64: Rename ARM64_WORKAROUND_2966298 (bsc#1219443)
- arm64: Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata (git-fixes)
- ASoC: doc: Fix undefined SND_SOC_DAPM_NOPM argument (git-fixes).
- ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work() (git-fixes).
- ASoC: SOF: IPC3: fix message bounds on ipc ops (git-fixes).
- ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616 (git-fixes).
- atm: idt77252: fix a memleak in open_card_ubr0 (git-fixes).
- Bluetooth: Avoid potential use-after-free in hci_error_reset (git-fixes).
- Bluetooth: Enforce validation on max value of connection interval (git-fixes).
- Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST (git-fixes).
- Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR (git-fixes).
- Bluetooth: hci_sync: Check the correct flag before starting a scan (git-fixes).
- Bluetooth: hci_sync: Fix accept_list when attempting to suspend (git-fixes).
- Bluetooth: L2CAP: Fix possible multiple reject send (git-fixes).
- Bluetooth: qca: Fix wrong event type for patch config command (git-fixes).
- bpf: Fix verification of indirect var-off stack access (git-fixes).
- bpf: Fix verification of indirect var-off stack access (git-fixes).
- bpf: Guard stack limits against 32bit overflow (git-fixes).
- bpf: Guard stack limits against 32bit overflow (git-fixes).
- bpf: Minor logging improvement (bsc#1220257).
- bus: moxtet: Add spi device table (git-fixes).
- cachefiles: fix memory leak in cachefiles_add_cache() (bsc#1220267).
- can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER) (git-fixes).
- crypto: api - Disallow identical driver names (git-fixes).
- crypto: ccp - Fix null pointer dereference in __sev_platform_shutdown_locked (git-fixes).
- crypto: octeontx2 - Fix cptvf driver cleanup (git-fixes).
- crypto: stm32/crc32 - fix parsing list of devices (git-fixes).
- dmaengine: fsl-qdma: Fix a memory leak related to the queue command DMA (git-fixes).
- dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read (git-fixes).
- dmaengine: fsl-qdma: increase size of 'irq_name' (git-fixes).
- dmaengine: fsl-qdma: init irq after reg initialization (git-fixes).
- dmaengine: ptdma: use consistent DMA masks (git-fixes).
- dmaengine: shdma: increase size of 'dev_id' (git-fixes).
- dmaengine: ti: edma: Add some null pointer checks to the edma_probe (git-fixes).
- driver core: Fix device_link_flag_is_sync_state_only() (git-fixes).
- drm/amd/display: Fix memory leak in dm_sw_fini() (git-fixes).
- drm/amd/display: Fix possible buffer overflow in 'find_dcfclk_for_voltage()' (git-fixes).
- drm/amd/display: Fix possible NULL dereference on device remove/driver unload (git-fixes).
- drm/amd/display: Increase frame-larger-than for all display_mode_vba files (git-fixes).
- drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz (git-fixes).
- drm/amd/display: Preserve original aspect ratio in create stream (git-fixes).
- drm/amdgpu: reset gpu for s3 suspend abort case (git-fixes).
- drm/amdgpu: skip to program GFXDEC registers for suspend abort (git-fixes).
- drm/amdgpu/display: Initialize gamma correction mode variable in dcn30_get_gamcor_current() (git-fixes).
- drm/buddy: fix range bias (git-fixes).
- drm/crtc: fix uninitialized variable use even harder (git-fixes).
- drm/i915/gvt: Fix uninitialized variable in handle_mmio() (git-fixes).
- drm/msm/dp: return correct Colorimetry for DP_TEST_DYNAMIC_RANGE_CEA case (git-fixes).
- drm/msm/dpu: check for valid hw_pp in dpu_encoder_helper_phys_cleanup (git-fixes).
- drm/msms/dp: fixed link clock divider bits be over written in BPC unknown case (git-fixes).
- drm/prime: Support page array >= 4GB (git-fixes).
- drm/syncobj: call drm_syncobj_fence_add_wait when WAIT_AVAILABLE flag is set (git-fixes).
- drm/ttm: Fix an invalid freeing on already freed page in error path (git-fixes).
- efi: Do not add memblocks for soft-reserved memory (git-fixes).
- efi: runtime: Fix potential overflow of soft-reserved region size (git-fixes).
- efi/capsule-loader: fix incorrect allocation size (git-fixes).
- fbcon: always restore the old font data in fbcon_do_set_font() (git-fixes).
- fbdev: savage: Error out if pixclock equals zero (git-fixes).
- fbdev: sis: Error out if pixclock equals zero (git-fixes).
- firewire: core: send bus reset promptly on gap count error (git-fixes).
- fs: dlm: fix build with CONFIG_IPV6 disabled (git-fixes).
- fs: JFS: UBSAN: array-index-out-of-bounds in dbAdjTree (git-fixes).
- gpio: 74x164: Enable output pins after registers are reset (git-fixes).
- gpio: fix resource unwinding order in error path (git-fixes).
- gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04 (git-fixes).
- gpiolib: Fix the error path order in gpiochip_add_data_with_key() (git-fixes).
- HID: apple: Add 2021 magic keyboard FN key mapping (git-fixes).
- HID: apple: Add support for the 2021 Magic Keyboard (git-fixes).
- HID: wacom: Do not register input devices until after hid_hw_start (git-fixes).
- HID: wacom: generic: Avoid reporting a serial of '0' to userspace (git-fixes).
- hwmon: (aspeed-pwm-tacho) mutex for tach reading (git-fixes).
- hwmon: (coretemp) Enlarge per package core count limit (git-fixes).
- hwmon: (coretemp) Fix bogus core_id to attr name mapping (git-fixes).
- hwmon: (coretemp) Fix out-of-bounds memory access (git-fixes).
- i2c: i801: Fix block process call transactions (git-fixes).
- i2c: i801: Remove i801_set_block_buffer_mode (git-fixes).
- i2c: imx: Add timer for handling the stop condition (git-fixes).
- i2c: imx: when being a target, mark the last read as processed (git-fixes).
- i3c: master: cdns: Update maximum prescaler value for i2c clock (git-fixes).
- IB/hfi1: Fix a memleak in init_credit_return (git-fixes)
- IB/hfi1: Fix sdma.h tx->num_descs off-by-one error (git-fixes)
- iio: accel: bma400: Fix a compilation problem (git-fixes).
- iio: adc: ad7091r: Set alert bit in config register (git-fixes).
- iio: core: fix memleak in iio_device_register_sysfs (git-fixes).
- iio: hid-sensor-als: Return 0 for HID_USAGE_SENSOR_TIME_TIMESTAMP (git-fixes).
- iio: magnetometer: rm3100: add boundary check for the value read from RM3100_REG_TMRC (git-fixes).
- Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table (git-fixes).
- Input: i8042 - add Fujitsu Lifebook U728 to i8042 quirk table (git-fixes).
- Input: i8042 - add quirk for Fujitsu Lifebook A574/H (git-fixes).
- Input: i8042 - fix strange behavior of touchpad on Clevo NS70PU (git-fixes).
- Input: iqs269a - switch to DEFINE_SIMPLE_DEV_PM_OPS() and pm_sleep_ptr() (git-fixes).
- Input: pm8941-powerkey - fix debounce on gen2+ PMICs (git-fixes).
- Input: pm8941-pwrkey - add software key press debouncing support (git-fixes).
- Input: pm8941-pwrkey - add support for PON GEN3 base addresses (git-fixes).
- Input: xpad - add Lenovo Legion Go controllers (git-fixes).
- Input: xpad - add Lenovo Legion Go controllers (git-fixes).
- irqchip/gic-v3-its: Fix GICv4.1 VPE affinity update (git-fixes).
- irqchip/irq-brcmstb-l2: Add write memory barrier before exit (git-fixes).
- jfs: fix array-index-out-of-bounds in dbAdjTree (git-fixes).
- jfs: fix array-index-out-of-bounds in diNewExt (git-fixes).
- jfs: fix slab-out-of-bounds Read in dtSearch (git-fixes).
- jfs: fix uaf in jfs_evict_inode (git-fixes).
- kbuild: Fix changing ELF file type for output of gen_btf for big endian (git-fixes).
- KVM: s390: fix cc for successful PQAP (git-fixes bsc#1219839).
- KVM: s390: fix setting of fpc register (git-fixes bsc#1220392).
- KVM: s390: vsie: fix race during shadow creation (git-fixes bsc#1220393).
- KVM: VMX: Move VERW closer to VMentry for MDS mitigation (git-fixes).
- KVM: VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH (git-fixes).
- lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is detected (git-commit).
- lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is detected (git-fixes).
- leds: trigger: panic: Do not register panic notifier if creating the trigger failed (git-fixes).
- lib/stackdepot: add depot_fetch_stack helper (jsc-PED#7423).
- lib/stackdepot: add refcount for records (jsc-PED#7423).
- lib/stackdepot: Fix first entry having a 0-handle (jsc-PED#7423).
- lib/stackdepot: Move stack_record struct definition into the header (jsc-PED#7423).
- libsubcmd: Fix memory leak in uniq() (git-fixes).
- md: Do not ignore suspended array in md_check_recovery() (git-fixes).
- md: do not leave 'MD_RECOVERY_FROZEN' in error path of md_set_readonly() (git-fixes).
- md: introduce md_ro_state (git-fixes).
- md: Make sure md_do_sync() will set MD_RECOVERY_DONE (git-fixes).
- md: Whenassemble the array, consult the superblock of the freshest device (git-fixes).
- md/raid10: check slab-out-of-bounds in md_bitmap_get_counter (git-fixes).
- md/raid5: release batch_last before waiting for another stripe_head (git-fixes).
- md/raid6: use valid sector values to determine if an I/O should wait on the reshape (git-fixes).
- media: ddbridge: fix an error code problem in ddb_probe (git-fixes).
- media: ir_toy: fix a memleak in irtoy_tx (git-fixes).
- media: rc: bpf attach/detach requires write permission (git-fixes).
- media: rockchip: rga: fix swizzling for RGB formats (git-fixes).
- media: stk1160: Fixed high volume of stk1160_dbg messages (git-fixes).
- mfd: syscon: Fix null pointer dereference in of_syscon_register() (git-fixes).
- mm,page_owner: Display all stacks and their count (jsc-PED#7423).
- mm,page_owner: Filter out stacks by a threshold (jsc-PED#7423).
- mm,page_owner: Implement the tracking of the stacks count (jsc-PED#7423).
- mm,page_owner: Maintain own list of stack_records structs (jsc-PED#7423).
- mm,page_owner: Update Documentation regarding page_owner_stacks (jsc-PED#7423).
- mm: memory-failure: fix potential unexpected return value from unpoison_memory() (git-fixes).
- mm/hwpoison: fix unpoison_memory() (bsc#1218663).
- mm/hwpoison: mf_mutex for soft offline and unpoison (bsc#1218663).
- mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (bsc#1218663).
- mmc: core: Fix eMMC initialization with 1-bit bus connection (git-fixes).
- mmc: core: Use mrq.sbc in close-ended ffu (git-fixes).
- mmc: mmc_spi: remove custom DMA mapped buffers (git-fixes).
- mmc: sdhci-xenon: add timeout for PHY init complete (git-fixes).
- mmc: sdhci-xenon: fix PHY init clock stability (git-fixes).
- mmc: slot-gpio: Allow non-sleeping GPIO ro (git-fixes).
- modpost: trim leading spaces when processing source files list (git-fixes).
- mtd: spinand: gigadevice: Fix the get ecc status issue (git-fixes).
- net: usb: dm9601: fix wrong return value in dm9601_mdio_read (git-fixes).
- net: usb: dm9601: fix wrong return value in dm9601_mdio_read (git-fixes).
- netfs, fscache: Prevent Oops in fscache_put_cache() (bsc#1220003).
- nilfs2: fix data corruption in dsync block recovery for small block sizes (git-fixes).
- nilfs2: replace WARN_ONs for invalid DAT metadata block requests (git-fixes).
- nouveau: fix function cast warnings (git-fixes).
- nouveau/svm: fix kvcalloc() argument order (git-fixes).
- ntfs: check overflow when iterating ATTR_RECORDs (git-fixes).
- ntfs: fix use-after-free in ntfs_attr_find() (git-fixes).
- nvme-fabrics: fix I/O connect error handling (git-fixes).
- nvme-host: fix the updating of the firmware version (git-fixes).
- PCI: Add no PM reset quirk for NVIDIA Spectrum devices (git-fixes).
- PCI: Add PCI_HEADER_TYPE_MFD definition (bsc#1220021).
- PCI: Fix 64GT/s effective data rate calculation (git-fixes).
- PCI: Only override AMD USB controller if required (git-fixes).
- PCI: switchtec: Fix stdev_release() crash after surprise hot remove (git-fixes).
- PCI/AER: Decode Requester ID when no error info found (git-fixes).
- platform/x86: thinkpad_acpi: Only update profile if successfully converted (git-fixes).
- platform/x86: touchscreen_dmi: Add info for the TECLAST X16 Plus tablet (git-fixes).
- platform/x86: touchscreen_dmi: Allow partial (prefix) matches for ACPI names (git-fixes).
- PM: core: Remove unnecessary (void *) conversions (git-fixes).
- PM: runtime: Have devm_pm_runtime_enable() handle pm_runtime_dont_use_autosuspend() (git-fixes).
- PNP: ACPI: fix fortify warning (git-fixes).
- power: supply: bq27xxx-i2c: Do not free non existing IRQ (git-fixes).
- powerpc: add crtsavres.o to always-y instead of extra-y (bsc#1194869).
- powerpc: Do not include lppaca.h in paca.h (bsc#1194869).
- powerpc/64: Set task pt_regs->link to the LR value on scv entry (bsc#1194869).
- powerpc/powernv: Fix fortify source warnings in opal-prd.c (bsc#1194869).
- powerpc/pseries: Add a clear modifier to ibm,pa/pi-features parser (bsc#1220348).
- powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT (bsc#1194869).
- powerpc/pseries: Set CPU_FTR_DBELL according to ibm,pi-features (bsc#1220348).
- powerpc/watchpoint: Disable pagefaults when getting user instruction (bsc#1194869).
- powerpc/watchpoints: Annotate atomic context in more places (bsc#1194869).
- powerpc/watchpoints: Disable preemption in thread_change_pc() (bsc#1194869).
- pstore/ram: Fix crash when setting number of cpus to an odd number (git-fixes).
- RAS: Introduce a FRU memory poison manager (jsc#PED-7618).
- RAS/AMD/ATL: Add MI300 row retirement support (jsc#PED-7618).
- RAS/AMD/ATL: Fix bit overflow in denorm_addr_df4_np2() (git-fixes).
- RDMA/bnxt_re: Add a missing check in bnxt_qplib_query_srq (git-fixes)
- RDMA/bnxt_re: Return error for SRQ resize (git-fixes)
- RDMA/core: Fix uninit-value access in ib_get_eth_speed() (bsc#1219934).
- RDMA/core: Get IB width and speed from netdev (bsc#1219934).
- RDMA/irdma: Add AE for too many RNRS (git-fixes)
- RDMA/irdma: Fix KASAN issue with tasklet (git-fixes)
- RDMA/irdma: Set the CQ read threshold for GEN 1 (git-fixes)
- RDMA/irdma: Validate max_send_wr and max_recv_wr (git-fixes)
- RDMA/qedr: Fix qedr_create_user_qp error flow (git-fixes)
- RDMA/srpt: fix function pointer cast warnings (git-fixes)
- RDMA/srpt: Support specifying the srpt_service_guid parameter (git-fixes)
- regulator: core: Only increment use_count when enable_count changes (git-fixes).
- regulator: pwm-regulator: Add validity checks in continuous .get_voltage (git-fixes).
- Revert 'drm/amd: flush any delayed gfxoff on suspend entry' (git-fixes).
- Revert 'drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz' (git-fixes).
- Revert 'drm/amd/pm: resolve reboot exception for si oland' (git-fixes).
- ring-buffer: Clean ring_buffer_poll_wait() error return (git-fixes).
- s390: use the correct count for __iowrite64_copy() (git-fixes bsc#1220317).
- s390/qeth: Fix potential loss of L3-IP@ in case of network issues (git-fixes bsc#1219840).
- sched/membarrier: reduce the ability to hammer on sys_membarrier (git-fixes).
- scsi: core: Move scsi_host_busy() out of host lock for waking up EH handler (git-fixes).
- scsi: core: Move scsi_host_busy() out of host lock if it is for per-command (git-fixes).
- scsi: fnic: Move fnic_fnic_flush_tx() to a work queue (git-fixes bsc#1219141).
- scsi: hisi_sas: Prevent parallel FLR and controller reset (git-fixes).
- scsi: ibmvfc: Limit max hw queues by num_online_cpus() (bsc#1220106).
- scsi: ibmvfc: Open-code reset loop for target reset (bsc#1220106).
- scsi: isci: Fix an error code problem in isci_io_request_build() (git-fixes).
- scsi: lpfc: Add condition to delete ndlp object after sending BLS_RJT to an ABTS (bsc#1220021).
- scsi: lpfc: Allow lpfc_plogi_confirm_nport() logic to execute for Fabric nodes (bsc#1220021).
- scsi: lpfc: Change lpfc_vport fc_flag member into a bitmask (bsc#1220021).
- scsi: lpfc: Change lpfc_vport load_flag member into a bitmask (bsc#1220021).
- scsi: lpfc: Change nlp state statistic counters into atomic_t (bsc#1220021).
- scsi: lpfc: Copyright updates for 14.4.0.0 patches (bsc#1220021).
- scsi: lpfc: Fix failure to delete vports when discovery is in progress (bsc#1220021).
- scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() (bsc#1220021).
- scsi: lpfc: Initialize status local variable in lpfc_sli4_repost_sgl_list() (bsc#1220021).
- scsi: lpfc: Move handling of reset congestion statistics events (bsc#1220021).
- scsi: lpfc: Protect vport fc_nodes list with an explicit spin lock (bsc#1220021).
- scsi: lpfc: Remove D_ID swap log message from trace event logger (bsc#1220021).
- scsi: lpfc: Remove NLP_RCV_PLOGI early return during RSCN processing for ndlps (bsc#1220021).
- scsi: lpfc: Remove shost_lock protection for fc_host_port shost APIs (bsc#1220021).
- scsi: lpfc: Replace deprecated strncpy() with strscpy() (bsc#1220021).
- scsi: lpfc: Save FPIN frequency statistics upon receipt of peer cgn notifications (bsc#1220021).
- scsi: lpfc: Update lpfc version to 14.4.0.0 (bsc#1220021).
- scsi: lpfc: Use PCI_HEADER_TYPE_MFD instead of literal (bsc#1220021).
- scsi: lpfc: Use sg_dma_len() API to get struct scatterlist's length (bsc#1220021).
- scsi: mpi3mr: Refresh sdev queue depth after controller reset (git-fixes).
- scsi: Revert 'scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock' (git-fixes bsc#1219141).
- serial: 8250: Remove serial_rs485 sanitization from em485 (git-fixes).
- spi-mxs: Fix chipselect glitch (git-fixes).
- spi: hisi-sfc-v3xx: Return IRQ_NONE if no interrupts were detected (git-fixes).
- spi: ppc4xx: Drop write-only variable (git-fixes).
- spi: sh-msiof: avoid integer overflow in constants (git-fixes).
- staging: iio: ad5933: fix type mismatch regression (git-fixes).
- tcp: fix tcp_mtup_probe_success vs wrong snd_cwnd (bsc#1218450).
- tomoyo: fix UAF write bug in tomoyo_write_control() (git-fixes).
- topology: Fix up build warning in topology_is_visible() (jsc#PED-7618).
- topology/sysfs: Add format parameter to macro defining 'show' functions for proc (jsc#PED-7618).
- topology/sysfs: Add PPIN in sysfs under cpu topology (jsc#PED-7618).
- topology/sysfs: Hide PPIN on systems that do not support it (jsc#PED-7618).
- tracing: Fix wasted memory in saved_cmdlines logic (git-fixes).
- tracing: Inform kmemleak of saved_cmdlines allocation (git-fixes).
- tracing/probes: Fix to show a parse error for bad type for $comm (git-fixes).
- tty: allow TIOCSLCKTRMIOS with CAP_CHECKPOINT_RESTORE (git-fixes).
- UBSAN: array-index-out-of-bounds in dtSplitRoot (git-fixes).
- usb: cdns: readd old API (git-fixes).
- usb: cdns3: fix memory double free when handle zero packet (git-fixes).
- usb: cdns3: fixed memory use after free at cdns3_gadget_ep_disable() (git-fixes).
- usb: cdns3: Modify the return value of cdns_set_active () to void when CONFIG_PM_SLEEP is disabled (git-fixes).
- usb: cdns3: Put the cdns set active part outside the spin lock (git-fixes).
- usb: cdnsp: blocked some cdns3 specific code (git-fixes).
- usb: cdnsp: fixed issue with incorrect detecting CDNSP family controllers (git-fixes).
- usb: dwc3: gadget: Do not disconnect if not started (git-fixes).
- usb: dwc3: gadget: Handle EP0 request dequeuing properly (git-fixes).
- usb: dwc3: gadget: Ignore End Transfer delay on teardown (git-fixes).
- usb: dwc3: gadget: Queue PM runtime idle on disconnect event (git-fixes).
- usb: dwc3: gadget: Refactor EP0 forced stall/restart into a separate API (git-fixes).
- usb: dwc3: gadget: Submit endxfer command if delayed during disconnect (git-fixes).
- usb: dwc3: host: Set XHCI_SG_TRB_CACHE_SIZE_QUIRK (git-fixes).
- usb: f_mass_storage: forbid async queue when shutdown happen (git-fixes).
- usb: f_mass_storage: forbid async queue when shutdown happen (git-fixes).
- usb: gadget: core: Add missing kerneldoc for vbus_work (git-fixes).
- usb: gadget: core: adjust uevent timing on gadget unbind (git-fixes).
- usb: Gadget: core: Help prevent panic during UVC unconfigure (git-fixes).
- usb: gadget: core: remove unbalanced mutex_unlock in usb_gadget_activate (git-fixes).
- usb: gadget: f_hid: fix report descriptor allocation (git-fixes).
- usb: gadget: Fix obscure lockdep violation for udc_mutex (git-fixes).
- usb: gadget: Fix use-after-free Read in usb_udc_uevent() (git-fixes).
- usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc (git-fixes).
- usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs (git-fixes).
- usb: gadget: udc: core: Offload usb_udc_vbus_handler processing (git-fixes).
- usb: gadget: udc: core: Prevent soft_connect_store() race (git-fixes).
- usb: gadget: udc: Handle gadget_connect failure during bind operation (git-fixes).
- usb: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT (bsc#1218527).
- usb: hub: Replace hardcoded quirk value with BIT() macro (git-fixes).
- usb: hub: Replace hardcoded quirk value with BIT() macro (git-fixes).
- usb: roles: do not get/set_role() when usb_role_switch is unregistered (git-fixes).
- usb: roles: fix NULL pointer issue when put module's reference (git-fixes).
- usb: serial: cp210x: add ID for IMST iM871A-USB (git-fixes).
- usb: serial: option: add Fibocom FM101-GL variant (git-fixes).
- usb: serial: qcserial: add new usb-id for Dell Wireless DW5826e (git-fixes).
- watchdog: it87_wdt: Keep WDTCTRL bit 3 unmodified for IT8784/IT8786 (git-fixes).
- wifi: ath11k: fix registration of 6Ghz-only phy without the full channel range (git-fixes).
- wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() (git-fixes).
- wifi: cfg80211: fix missing interfaces when dumping (git-fixes).
- wifi: cfg80211: fix RCU dereference in __cfg80211_bss_update (git-fixes).
- wifi: cfg80211: free beacon_ies when overridden from hidden BSS (git-fixes).
- wifi: iwlwifi: Fix some error codes (git-fixes).
- wifi: iwlwifi: mvm: avoid baid size integer overflow (git-fixes).
- wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table() (git-fixes).
- wifi: mac80211: adding missing drv_mgd_complete_tx() call (git-fixes).
- wifi: mac80211: fix race condition on enabling fast-xmit (git-fixes).
- wifi: nl80211: reject iftype change with mesh ID change (git-fixes).
- wifi: rt2x00: restart beacon queue when hardware reset (git-fixes).
- wifi: rtl8xxxu: Add additional USB IDs for RTL8192EU devices (git-fixes).
- wifi: rtlwifi: rtl8723{be,ae}: using calculate_bit_shift() (git-fixes).
- wifi: wext-core: Fix -Wstringop-overflow warning in ioctl_standard_iw_point() (git-fixes).
- x86/asm: Add _ASM_RIP() macro for x86-64 (%rip) suffix (git-fixes).
- x86/bugs: Add asm helpers for executing VERW (git-fixes).
- x86/bugs: Use ALTERNATIVE() instead of mds_user_clear static key (git-fixes). Also add mds_user_clear to kABI severities since it's strictly mitigation related so should be low risk.
- x86/cpu: X86_FEATURE_INTEL_PPIN finally had a CPUID bit (jsc#PED-7618).
- x86/entry_32: Add VERW just before userspace transition (git-fixes).
- x86/entry_64: Add VERW just before userspace transition (git-fixes).
- x86/mm: Fix memory encryption features advertisement (bsc#1206453).
- xfs: remove unused fields from struct xbtree_ifakeroot (git-fixes).
- xfs: short circuit xfs_growfs_data_private() if delta is zero (git-fixes).
Patchnames
SUSE-2024-855,SUSE-SLE-Module-Public-Cloud-15-SP5-2024-855,openSUSE-SLE-15.5-2024-855
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\nThe SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2023-6270: Fixed a use-after-free bug in aoecmd_cfg_pkts (bsc#1218562).\n- CVE-2023-52559: Fixed a bug by avoiding memory allocation in iommu_suspend (bsc#1220933).\n- CVE-2023-52462: Fixed a security check for attempt to corrupt spilled pointer (bsc#1220325).\n- CVE-2023-52467: Fixed a null pointer dereference in of_syscon_register (bsc#1220433).\n- CVE-2023-52463: Fixed null pointer dereference in efivarfs (bsc#1220328).\n- CVE-2023-52530: Fixed a potential key use-after-free in wifi mac80211 (bsc#1220930).\n- CVE-2024-26607: Fixed a probing race issue in sii902x: (bsc#1220736).\n- CVE-2024-26591: Fixed re-attachment branch in bpf_tracing_prog_attach (bsc#1220254).\n- CVE-2024-26589: Fixed out of bounds read due to variable offset alu on PTR_TO_FLOW_KEYS (bsc#1220255).\n- CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187).\n- CVE-2023-52340: Fixed ICMPv6 \u201cPacket Too Big\u201d packets force a DoS of the Linux kernel by forcing 100% CPU (bsc#1219295).\n- CVE-2024-0607: Fixed 64-bit load issue in nft_byteorder_eval() (bsc#1218915).\n- CVE-2023-6817: Fixed use-after-free in nft_pipapo_walk (bsc#1218195).\n- CVE-2024-26622: Fixed UAF write bug in tomoyo_write_control() (bsc#1220825).\n- CVE-2024-23850: Fixed double free of anonymous device after snapshot creation failure (bsc#1219126).\n- CVE-2023-52452: Fixed Fix accesses to uninit stack slots (bsc#1220257).\n- CVE-2023-52457: Fixed skipped resource freeing if pm_runtime_resume_and_get() failed (bsc#1220350).\n- CVE-2023-52456: Fixed tx statemachine deadlock (bsc#1220364).\n- CVE-2023-52451: Fixed access beyond end of drmem array (bsc#1220250).\n- CVE-2023-52447: Fixed map_fd_put_ptr() signature kABI workaround (bsc#1220251).\n- CVE-2023-52449: Fixed gluebi NULL pointer dereference caused by ftl notifier (bsc#1220238).\n- CVE-2021-46923: Fixed reference leakage in fs/mount_setattr (bsc#1220457).\n- CVE-2024-26598: Fixed potential UAF in LPI translation cache (bsc#1220326).\n- CVE-2024-26603: Fixed infinite loop via #PF handling (bsc#1220335).\n- CVE-2023-52445: Fixed use after free on context disconnection (bsc#1220241).\n- CVE-2023-52439: Fixed use-after-free in uio_open (bsc#1220140).\n- CVE-2023-52443: Fixed crash when parsed profile name is empty (bsc#1220240).\n- CVE-2024-26593: Fixed block process call transactions (bsc#1220009).\n- CVE-2024-26586: Fixed stack corruption (bsc#1220243).\n- CVE-2024-26595: Fixed NULL pointer dereference in error path (bsc#1220344).\n- CVE-2023-52464: Fixed possible out-of-bounds string access (bsc#1220330)\n- CVE-2023-52448: Fixed kernel NULL pointer dereference in gfs2_rgrp_dump (bsc#1220253).\n- CVE-2024-1151: Fixed unlimited number of recursions from action sets (bsc#1219835).\n- CVE-2023-5197: Fixed se-after-free due to addition and removal of rules from chain bindings within the same transaction (bsc#1218216).\n- CVE-2024-23849: Fixed array-index-out-of-bounds in rds_cmsg_recv (bsc#1219127).\n- CVE-2023-52429: Fixed potential DoS in dm_table_create in drivers/md/dm-table.c (bsc#1219827).\n- CVE-2024-23851: Fixed crash in copy_params in drivers/md/dm-ioctl.c (bsc#1219146).\n\nThe following non-security bugs were fixed:\n\n- ACPI: APEI: set memory failure flags as MF_ACTION_REQUIRED on synchronous events (git-fixes).\n- ACPI: button: Add lid disable DMI quirk for Nextbook Ares 8A (git-fixes).\n- ACPI: extlog: fix NULL pointer dereference check (git-fixes).\n- ACPI: resource: Add ASUS model S5402ZA to quirks (git-fixes).\n- ACPI: resource: Skip IRQ override on ASUS ExpertBook B1502CBA (git-fixes).\n- ACPI: resource: Skip IRQ override on Asus Expertbook B2402CBA (git-fixes).\n- ACPI: video: Add backlight=native DMI quirk for Apple iMac11,3 (git-fixes).\n- ACPI: video: Add backlight=native DMI quirk for Apple iMac12,1 and iMac12,2 (git-fixes).\n- ACPI: video: Add backlight=native DMI quirk for Lenovo ThinkPad X131e (3371 AMD version) (git-fixes).\n- ACPI: video: Add quirk for the Colorful X15 AT 23 Laptop (git-fixes).\n- afs: fix the usage of read_seqbegin_or_lock() in afs_find_server*() (git-fixes).\n- afs: fix the usage of read_seqbegin_or_lock() in afs_lookup_volume_rcu() (git-fixes).\n- afs: Hide silly-rename files from userspace (git-fixes).\n- afs: Increase buffer size in afs_update_volume_status() (git-fixes).\n- ahci: asm1166: correct count of reported ports (git-fixes).\n- ALSA: Drop leftover snd-rtctimer stuff from Makefile (git-fixes).\n- ALSA: firewire-lib: fix to check cycle continuity (git-fixes).\n- ALSA: hda/conexant: Add quirk for SWS JS201D (git-fixes).\n- ALSA: hda/realtek: Apply headset jack quirk for non-bass alc287 thinkpads (git-fixes).\n- ALSA: hda/realtek: cs35l41: Fix device ID / model name (git-fixes).\n- ALSA: hda/realtek: cs35l41: Fix order and duplicates in quirks table (git-fixes).\n- ALSA: hda/realtek: Enable headset mic on Vaio VJFE-ADL (git-fixes).\n- ALSA: hda/realtek: Enable Mute LED on HP Laptop 14-fq0xxx (git-fixes).\n- ALSA: hda/realtek: fix mute/micmute LED For HP mt645 (git-fixes).\n- ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power (git-fixes).\n- ALSA: hda/realtek: Fix the external mic not being recognised for Acer Swift 1 SF114-32 (git-fixes).\n- ALSA: usb-audio: Add a quirk for Yamaha YIT-W12TX transmitter (git-fixes).\n- ALSA: usb-audio: Add delay quirk for MOTU M Series 2nd revision (git-fixes).\n- ALSA: usb-audio: add quirk for RODE NT-USB+ (git-fixes).\n- ALSA: usb-audio: Check presence of valid altsetting control (git-fixes).\n- ALSA: usb-audio: Ignore clock selector errors for single connection (git-fixes).\n- ALSA: usb-audio: More relaxed check of MIDI jack names (git-fixes).\n- ALSA: usb-audio: Sort quirk table entries (git-fixes).\n- arm64: entry: fix ARM64_WORKAROUND_SPECULATIVE_UNPRIV_LOAD (bsc#1219443)\n- arm64: entry: Preserve/restore X29 even for compat tasks (bsc#1219443)\n- arm64: entry: Simplify tramp_alias macro and tramp_exit routine (bsc#1219443)\n- arm64: errata: Add Cortex-A510 speculative unprivileged load (bsc#1219443) Enable workaround.\n- arm64: errata: Add Cortex-A520 speculative unprivileged load (bsc#1219443) Enable workaround without kABI break.\n- arm64: errata: Mitigate Ampere1 erratum AC03_CPU_38 at stage-2 (git-fixes) Enable AMPERE_ERRATUM_AC03_CPU_38 workaround without kABI break\n- arm64: irq: set the correct node for shadow call stack (git-fixes)\n- arm64: irq: set the correct node for VMAP stack (git-fixes)\n- arm64: Rename ARM64_WORKAROUND_2966298 (bsc#1219443)\n- arm64: Subscribe Microsoft Azure Cobalt 100 to ARM Neoverse N2 errata (git-fixes)\n- ASoC: doc: Fix undefined SND_SOC_DAPM_NOPM argument (git-fixes).\n- ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work() (git-fixes).\n- ASoC: SOF: IPC3: fix message bounds on ipc ops (git-fixes).\n- ASoC: sunxi: sun4i-spdif: Add support for Allwinner H616 (git-fixes).\n- atm: idt77252: fix a memleak in open_card_ubr0 (git-fixes).\n- Bluetooth: Avoid potential use-after-free in hci_error_reset (git-fixes).\n- Bluetooth: Enforce validation on max value of connection interval (git-fixes).\n- Bluetooth: hci_event: Fix handling of HCI_EV_IO_CAPA_REQUEST (git-fixes).\n- Bluetooth: hci_event: Fix wrongly recorded wakeup BD_ADDR (git-fixes).\n- Bluetooth: hci_sync: Check the correct flag before starting a scan (git-fixes).\n- Bluetooth: hci_sync: Fix accept_list when attempting to suspend (git-fixes).\n- Bluetooth: L2CAP: Fix possible multiple reject send (git-fixes).\n- Bluetooth: qca: Fix wrong event type for patch config command (git-fixes).\n- bpf: Fix verification of indirect var-off stack access (git-fixes).\n- bpf: Fix verification of indirect var-off stack access (git-fixes).\n- bpf: Guard stack limits against 32bit overflow (git-fixes).\n- bpf: Guard stack limits against 32bit overflow (git-fixes).\n- bpf: Minor logging improvement (bsc#1220257).\n- bus: moxtet: Add spi device table (git-fixes).\n- cachefiles: fix memory leak in cachefiles_add_cache() (bsc#1220267).\n- can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER) (git-fixes).\n- crypto: api - Disallow identical driver names (git-fixes).\n- crypto: ccp - Fix null pointer dereference in __sev_platform_shutdown_locked (git-fixes).\n- crypto: octeontx2 - Fix cptvf driver cleanup (git-fixes).\n- crypto: stm32/crc32 - fix parsing list of devices (git-fixes).\n- dmaengine: fsl-qdma: Fix a memory leak related to the queue command DMA (git-fixes).\n- dmaengine: fsl-qdma: fix SoC may hang on 16 byte unaligned read (git-fixes).\n- dmaengine: fsl-qdma: increase size of \u0027irq_name\u0027 (git-fixes).\n- dmaengine: fsl-qdma: init irq after reg initialization (git-fixes).\n- dmaengine: ptdma: use consistent DMA masks (git-fixes).\n- dmaengine: shdma: increase size of \u0027dev_id\u0027 (git-fixes).\n- dmaengine: ti: edma: Add some null pointer checks to the edma_probe (git-fixes).\n- driver core: Fix device_link_flag_is_sync_state_only() (git-fixes).\n- drm/amd/display: Fix memory leak in dm_sw_fini() (git-fixes).\n- drm/amd/display: Fix possible buffer overflow in \u0027find_dcfclk_for_voltage()\u0027 (git-fixes).\n- drm/amd/display: Fix possible NULL dereference on device remove/driver unload (git-fixes).\n- drm/amd/display: Increase frame-larger-than for all display_mode_vba files (git-fixes).\n- drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz (git-fixes).\n- drm/amd/display: Preserve original aspect ratio in create stream (git-fixes).\n- drm/amdgpu: reset gpu for s3 suspend abort case (git-fixes).\n- drm/amdgpu: skip to program GFXDEC registers for suspend abort (git-fixes).\n- drm/amdgpu/display: Initialize gamma correction mode variable in dcn30_get_gamcor_current() (git-fixes).\n- drm/buddy: fix range bias (git-fixes).\n- drm/crtc: fix uninitialized variable use even harder (git-fixes).\n- drm/i915/gvt: Fix uninitialized variable in handle_mmio() (git-fixes).\n- drm/msm/dp: return correct Colorimetry for DP_TEST_DYNAMIC_RANGE_CEA case (git-fixes).\n- drm/msm/dpu: check for valid hw_pp in dpu_encoder_helper_phys_cleanup (git-fixes).\n- drm/msms/dp: fixed link clock divider bits be over written in BPC unknown case (git-fixes).\n- drm/prime: Support page array \u003e= 4GB (git-fixes).\n- drm/syncobj: call drm_syncobj_fence_add_wait when WAIT_AVAILABLE flag is set (git-fixes).\n- drm/ttm: Fix an invalid freeing on already freed page in error path (git-fixes).\n- efi: Do not add memblocks for soft-reserved memory (git-fixes).\n- efi: runtime: Fix potential overflow of soft-reserved region size (git-fixes).\n- efi/capsule-loader: fix incorrect allocation size (git-fixes).\n- fbcon: always restore the old font data in fbcon_do_set_font() (git-fixes).\n- fbdev: savage: Error out if pixclock equals zero (git-fixes).\n- fbdev: sis: Error out if pixclock equals zero (git-fixes).\n- firewire: core: send bus reset promptly on gap count error (git-fixes).\n- fs: dlm: fix build with CONFIG_IPV6 disabled (git-fixes).\n- fs: JFS: UBSAN: array-index-out-of-bounds in dbAdjTree (git-fixes).\n- gpio: 74x164: Enable output pins after registers are reset (git-fixes).\n- gpio: fix resource unwinding order in error path (git-fixes).\n- gpiolib: acpi: Ignore touchpad wakeup on GPD G1619-04 (git-fixes).\n- gpiolib: Fix the error path order in gpiochip_add_data_with_key() (git-fixes).\n- HID: apple: Add 2021 magic keyboard FN key mapping (git-fixes).\n- HID: apple: Add support for the 2021 Magic Keyboard (git-fixes).\n- HID: wacom: Do not register input devices until after hid_hw_start (git-fixes).\n- HID: wacom: generic: Avoid reporting a serial of \u00270\u0027 to userspace (git-fixes).\n- hwmon: (aspeed-pwm-tacho) mutex for tach reading (git-fixes).\n- hwmon: (coretemp) Enlarge per package core count limit (git-fixes).\n- hwmon: (coretemp) Fix bogus core_id to attr name mapping (git-fixes).\n- hwmon: (coretemp) Fix out-of-bounds memory access (git-fixes).\n- i2c: i801: Fix block process call transactions (git-fixes).\n- i2c: i801: Remove i801_set_block_buffer_mode (git-fixes).\n- i2c: imx: Add timer for handling the stop condition (git-fixes).\n- i2c: imx: when being a target, mark the last read as processed (git-fixes).\n- i3c: master: cdns: Update maximum prescaler value for i2c clock (git-fixes).\n- IB/hfi1: Fix a memleak in init_credit_return (git-fixes)\n- IB/hfi1: Fix sdma.h tx-\u003enum_descs off-by-one error (git-fixes)\n- iio: accel: bma400: Fix a compilation problem (git-fixes).\n- iio: adc: ad7091r: Set alert bit in config register (git-fixes).\n- iio: core: fix memleak in iio_device_register_sysfs (git-fixes).\n- iio: hid-sensor-als: Return 0 for HID_USAGE_SENSOR_TIME_TIMESTAMP (git-fixes).\n- iio: magnetometer: rm3100: add boundary check for the value read from RM3100_REG_TMRC (git-fixes).\n- Input: i8042 - add Fujitsu Lifebook E5411 to i8042 quirk table (git-fixes).\n- Input: i8042 - add Fujitsu Lifebook U728 to i8042 quirk table (git-fixes).\n- Input: i8042 - add quirk for Fujitsu Lifebook A574/H (git-fixes).\n- Input: i8042 - fix strange behavior of touchpad on Clevo NS70PU (git-fixes).\n- Input: iqs269a - switch to DEFINE_SIMPLE_DEV_PM_OPS() and pm_sleep_ptr() (git-fixes).\n- Input: pm8941-powerkey - fix debounce on gen2+ PMICs (git-fixes).\n- Input: pm8941-pwrkey - add software key press debouncing support (git-fixes).\n- Input: pm8941-pwrkey - add support for PON GEN3 base addresses (git-fixes).\n- Input: xpad - add Lenovo Legion Go controllers (git-fixes).\n- Input: xpad - add Lenovo Legion Go controllers (git-fixes).\n- irqchip/gic-v3-its: Fix GICv4.1 VPE affinity update (git-fixes).\n- irqchip/irq-brcmstb-l2: Add write memory barrier before exit (git-fixes).\n- jfs: fix array-index-out-of-bounds in dbAdjTree (git-fixes).\n- jfs: fix array-index-out-of-bounds in diNewExt (git-fixes).\n- jfs: fix slab-out-of-bounds Read in dtSearch (git-fixes).\n- jfs: fix uaf in jfs_evict_inode (git-fixes).\n- kbuild: Fix changing ELF file type for output of gen_btf for big endian (git-fixes).\n- KVM: s390: fix cc for successful PQAP (git-fixes bsc#1219839).\n- KVM: s390: fix setting of fpc register (git-fixes bsc#1220392).\n- KVM: s390: vsie: fix race during shadow creation (git-fixes bsc#1220393).\n- KVM: VMX: Move VERW closer to VMentry for MDS mitigation (git-fixes).\n- KVM: VMX: Use BT+JNC, i.e. EFLAGS.CF to select VMRESUME vs. VMLAUNCH (git-fixes).\n- lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is detected (git-commit).\n- lan78xx: enable auto speed configuration for LAN7850 if no EEPROM is detected (git-fixes).\n- leds: trigger: panic: Do not register panic notifier if creating the trigger failed (git-fixes).\n- lib/stackdepot: add depot_fetch_stack helper (jsc-PED#7423).\n- lib/stackdepot: add refcount for records (jsc-PED#7423).\n- lib/stackdepot: Fix first entry having a 0-handle (jsc-PED#7423).\n- lib/stackdepot: Move stack_record struct definition into the header (jsc-PED#7423).\n- libsubcmd: Fix memory leak in uniq() (git-fixes).\n- md: Do not ignore suspended array in md_check_recovery() (git-fixes).\n- md: do not leave \u0027MD_RECOVERY_FROZEN\u0027 in error path of md_set_readonly() (git-fixes).\n- md: introduce md_ro_state (git-fixes).\n- md: Make sure md_do_sync() will set MD_RECOVERY_DONE (git-fixes).\n- md: Whenassemble the array, consult the superblock of the freshest device (git-fixes).\n- md/raid10: check slab-out-of-bounds in md_bitmap_get_counter (git-fixes).\n- md/raid5: release batch_last before waiting for another stripe_head (git-fixes).\n- md/raid6: use valid sector values to determine if an I/O should wait on the reshape (git-fixes).\n- media: ddbridge: fix an error code problem in ddb_probe (git-fixes).\n- media: ir_toy: fix a memleak in irtoy_tx (git-fixes).\n- media: rc: bpf attach/detach requires write permission (git-fixes).\n- media: rockchip: rga: fix swizzling for RGB formats (git-fixes).\n- media: stk1160: Fixed high volume of stk1160_dbg messages (git-fixes).\n- mfd: syscon: Fix null pointer dereference in of_syscon_register() (git-fixes).\n- mm,page_owner: Display all stacks and their count (jsc-PED#7423).\n- mm,page_owner: Filter out stacks by a threshold (jsc-PED#7423).\n- mm,page_owner: Implement the tracking of the stacks count (jsc-PED#7423).\n- mm,page_owner: Maintain own list of stack_records structs (jsc-PED#7423).\n- mm,page_owner: Update Documentation regarding page_owner_stacks (jsc-PED#7423).\n- mm: memory-failure: fix potential unexpected return value from unpoison_memory() (git-fixes).\n- mm/hwpoison: fix unpoison_memory() (bsc#1218663).\n- mm/hwpoison: mf_mutex for soft offline and unpoison (bsc#1218663).\n- mm/hwpoison: remove MF_MSG_BUDDY_2ND and MF_MSG_POISONED_HUGE (bsc#1218663).\n- mmc: core: Fix eMMC initialization with 1-bit bus connection (git-fixes).\n- mmc: core: Use mrq.sbc in close-ended ffu (git-fixes).\n- mmc: mmc_spi: remove custom DMA mapped buffers (git-fixes).\n- mmc: sdhci-xenon: add timeout for PHY init complete (git-fixes).\n- mmc: sdhci-xenon: fix PHY init clock stability (git-fixes).\n- mmc: slot-gpio: Allow non-sleeping GPIO ro (git-fixes).\n- modpost: trim leading spaces when processing source files list (git-fixes).\n- mtd: spinand: gigadevice: Fix the get ecc status issue (git-fixes).\n- net: usb: dm9601: fix wrong return value in dm9601_mdio_read (git-fixes).\n- net: usb: dm9601: fix wrong return value in dm9601_mdio_read (git-fixes).\n- netfs, fscache: Prevent Oops in fscache_put_cache() (bsc#1220003).\n- nilfs2: fix data corruption in dsync block recovery for small block sizes (git-fixes).\n- nilfs2: replace WARN_ONs for invalid DAT metadata block requests (git-fixes).\n- nouveau: fix function cast warnings (git-fixes).\n- nouveau/svm: fix kvcalloc() argument order (git-fixes).\n- ntfs: check overflow when iterating ATTR_RECORDs (git-fixes).\n- ntfs: fix use-after-free in ntfs_attr_find() (git-fixes).\n- nvme-fabrics: fix I/O connect error handling (git-fixes).\n- nvme-host: fix the updating of the firmware version (git-fixes).\n- PCI: Add no PM reset quirk for NVIDIA Spectrum devices (git-fixes).\n- PCI: Add PCI_HEADER_TYPE_MFD definition (bsc#1220021).\n- PCI: Fix 64GT/s effective data rate calculation (git-fixes).\n- PCI: Only override AMD USB controller if required (git-fixes).\n- PCI: switchtec: Fix stdev_release() crash after surprise hot remove (git-fixes).\n- PCI/AER: Decode Requester ID when no error info found (git-fixes).\n- platform/x86: thinkpad_acpi: Only update profile if successfully converted (git-fixes).\n- platform/x86: touchscreen_dmi: Add info for the TECLAST X16 Plus tablet (git-fixes).\n- platform/x86: touchscreen_dmi: Allow partial (prefix) matches for ACPI names (git-fixes).\n- PM: core: Remove unnecessary (void *) conversions (git-fixes).\n- PM: runtime: Have devm_pm_runtime_enable() handle pm_runtime_dont_use_autosuspend() (git-fixes).\n- PNP: ACPI: fix fortify warning (git-fixes).\n- power: supply: bq27xxx-i2c: Do not free non existing IRQ (git-fixes).\n- powerpc: add crtsavres.o to always-y instead of extra-y (bsc#1194869).\n- powerpc: Do not include lppaca.h in paca.h (bsc#1194869).\n- powerpc/64: Set task pt_regs-\u003elink to the LR value on scv entry (bsc#1194869).\n- powerpc/powernv: Fix fortify source warnings in opal-prd.c (bsc#1194869).\n- powerpc/pseries: Add a clear modifier to ibm,pa/pi-features parser (bsc#1220348).\n- powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT (bsc#1194869).\n- powerpc/pseries: Set CPU_FTR_DBELL according to ibm,pi-features (bsc#1220348).\n- powerpc/watchpoint: Disable pagefaults when getting user instruction (bsc#1194869).\n- powerpc/watchpoints: Annotate atomic context in more places (bsc#1194869).\n- powerpc/watchpoints: Disable preemption in thread_change_pc() (bsc#1194869).\n- pstore/ram: Fix crash when setting number of cpus to an odd number (git-fixes).\n- RAS: Introduce a FRU memory poison manager (jsc#PED-7618).\n- RAS/AMD/ATL: Add MI300 row retirement support (jsc#PED-7618).\n- RAS/AMD/ATL: Fix bit overflow in denorm_addr_df4_np2() (git-fixes).\n- RDMA/bnxt_re: Add a missing check in bnxt_qplib_query_srq (git-fixes)\n- RDMA/bnxt_re: Return error for SRQ resize (git-fixes)\n- RDMA/core: Fix uninit-value access in ib_get_eth_speed() (bsc#1219934).\n- RDMA/core: Get IB width and speed from netdev (bsc#1219934).\n- RDMA/irdma: Add AE for too many RNRS (git-fixes)\n- RDMA/irdma: Fix KASAN issue with tasklet (git-fixes)\n- RDMA/irdma: Set the CQ read threshold for GEN 1 (git-fixes)\n- RDMA/irdma: Validate max_send_wr and max_recv_wr (git-fixes)\n- RDMA/qedr: Fix qedr_create_user_qp error flow (git-fixes)\n- RDMA/srpt: fix function pointer cast warnings (git-fixes)\n- RDMA/srpt: Support specifying the srpt_service_guid parameter (git-fixes)\n- regulator: core: Only increment use_count when enable_count changes (git-fixes).\n- regulator: pwm-regulator: Add validity checks in continuous .get_voltage (git-fixes).\n- Revert \u0027drm/amd: flush any delayed gfxoff on suspend entry\u0027 (git-fixes).\n- Revert \u0027drm/amd/display: increased min_dcfclk_mhz and min_fclk_mhz\u0027 (git-fixes).\n- Revert \u0027drm/amd/pm: resolve reboot exception for si oland\u0027 (git-fixes).\n- ring-buffer: Clean ring_buffer_poll_wait() error return (git-fixes).\n- s390: use the correct count for __iowrite64_copy() (git-fixes bsc#1220317).\n- s390/qeth: Fix potential loss of L3-IP@ in case of network issues (git-fixes bsc#1219840).\n- sched/membarrier: reduce the ability to hammer on sys_membarrier (git-fixes).\n- scsi: core: Move scsi_host_busy() out of host lock for waking up EH handler (git-fixes).\n- scsi: core: Move scsi_host_busy() out of host lock if it is for per-command (git-fixes).\n- scsi: fnic: Move fnic_fnic_flush_tx() to a work queue (git-fixes bsc#1219141).\n- scsi: hisi_sas: Prevent parallel FLR and controller reset (git-fixes).\n- scsi: ibmvfc: Limit max hw queues by num_online_cpus() (bsc#1220106).\n- scsi: ibmvfc: Open-code reset loop for target reset (bsc#1220106).\n- scsi: isci: Fix an error code problem in isci_io_request_build() (git-fixes).\n- scsi: lpfc: Add condition to delete ndlp object after sending BLS_RJT to an ABTS (bsc#1220021).\n- scsi: lpfc: Allow lpfc_plogi_confirm_nport() logic to execute for Fabric nodes (bsc#1220021).\n- scsi: lpfc: Change lpfc_vport fc_flag member into a bitmask (bsc#1220021).\n- scsi: lpfc: Change lpfc_vport load_flag member into a bitmask (bsc#1220021).\n- scsi: lpfc: Change nlp state statistic counters into atomic_t (bsc#1220021).\n- scsi: lpfc: Copyright updates for 14.4.0.0 patches (bsc#1220021).\n- scsi: lpfc: Fix failure to delete vports when discovery is in progress (bsc#1220021).\n- scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() (bsc#1220021).\n- scsi: lpfc: Initialize status local variable in lpfc_sli4_repost_sgl_list() (bsc#1220021).\n- scsi: lpfc: Move handling of reset congestion statistics events (bsc#1220021).\n- scsi: lpfc: Protect vport fc_nodes list with an explicit spin lock (bsc#1220021).\n- scsi: lpfc: Remove D_ID swap log message from trace event logger (bsc#1220021).\n- scsi: lpfc: Remove NLP_RCV_PLOGI early return during RSCN processing for ndlps (bsc#1220021).\n- scsi: lpfc: Remove shost_lock protection for fc_host_port shost APIs (bsc#1220021).\n- scsi: lpfc: Replace deprecated strncpy() with strscpy() (bsc#1220021).\n- scsi: lpfc: Save FPIN frequency statistics upon receipt of peer cgn notifications (bsc#1220021).\n- scsi: lpfc: Update lpfc version to 14.4.0.0 (bsc#1220021).\n- scsi: lpfc: Use PCI_HEADER_TYPE_MFD instead of literal (bsc#1220021).\n- scsi: lpfc: Use sg_dma_len() API to get struct scatterlist\u0027s length (bsc#1220021).\n- scsi: mpi3mr: Refresh sdev queue depth after controller reset (git-fixes).\n- scsi: Revert \u0027scsi: fcoe: Fix potential deadlock on \u0026fip-\u003ectlr_lock\u0027 (git-fixes bsc#1219141).\n- serial: 8250: Remove serial_rs485 sanitization from em485 (git-fixes).\n- spi-mxs: Fix chipselect glitch (git-fixes).\n- spi: hisi-sfc-v3xx: Return IRQ_NONE if no interrupts were detected (git-fixes).\n- spi: ppc4xx: Drop write-only variable (git-fixes).\n- spi: sh-msiof: avoid integer overflow in constants (git-fixes).\n- staging: iio: ad5933: fix type mismatch regression (git-fixes).\n- tcp: fix tcp_mtup_probe_success vs wrong snd_cwnd (bsc#1218450).\n- tomoyo: fix UAF write bug in tomoyo_write_control() (git-fixes).\n- topology: Fix up build warning in topology_is_visible() (jsc#PED-7618).\n- topology/sysfs: Add format parameter to macro defining \u0027show\u0027 functions for proc (jsc#PED-7618).\n- topology/sysfs: Add PPIN in sysfs under cpu topology (jsc#PED-7618).\n- topology/sysfs: Hide PPIN on systems that do not support it (jsc#PED-7618).\n- tracing: Fix wasted memory in saved_cmdlines logic (git-fixes).\n- tracing: Inform kmemleak of saved_cmdlines allocation (git-fixes).\n- tracing/probes: Fix to show a parse error for bad type for $comm (git-fixes).\n- tty: allow TIOCSLCKTRMIOS with CAP_CHECKPOINT_RESTORE (git-fixes).\n- UBSAN: array-index-out-of-bounds in dtSplitRoot (git-fixes).\n- usb: cdns: readd old API (git-fixes).\n- usb: cdns3: fix memory double free when handle zero packet (git-fixes).\n- usb: cdns3: fixed memory use after free at cdns3_gadget_ep_disable() (git-fixes).\n- usb: cdns3: Modify the return value of cdns_set_active () to void when CONFIG_PM_SLEEP is disabled (git-fixes).\n- usb: cdns3: Put the cdns set active part outside the spin lock (git-fixes).\n- usb: cdnsp: blocked some cdns3 specific code (git-fixes).\n- usb: cdnsp: fixed issue with incorrect detecting CDNSP family controllers (git-fixes).\n- usb: dwc3: gadget: Do not disconnect if not started (git-fixes).\n- usb: dwc3: gadget: Handle EP0 request dequeuing properly (git-fixes).\n- usb: dwc3: gadget: Ignore End Transfer delay on teardown (git-fixes).\n- usb: dwc3: gadget: Queue PM runtime idle on disconnect event (git-fixes).\n- usb: dwc3: gadget: Refactor EP0 forced stall/restart into a separate API (git-fixes).\n- usb: dwc3: gadget: Submit endxfer command if delayed during disconnect (git-fixes).\n- usb: dwc3: host: Set XHCI_SG_TRB_CACHE_SIZE_QUIRK (git-fixes).\n- usb: f_mass_storage: forbid async queue when shutdown happen (git-fixes).\n- usb: f_mass_storage: forbid async queue when shutdown happen (git-fixes).\n- usb: gadget: core: Add missing kerneldoc for vbus_work (git-fixes).\n- usb: gadget: core: adjust uevent timing on gadget unbind (git-fixes).\n- usb: Gadget: core: Help prevent panic during UVC unconfigure (git-fixes).\n- usb: gadget: core: remove unbalanced mutex_unlock in usb_gadget_activate (git-fixes).\n- usb: gadget: f_hid: fix report descriptor allocation (git-fixes).\n- usb: gadget: Fix obscure lockdep violation for udc_mutex (git-fixes).\n- usb: gadget: Fix use-after-free Read in usb_udc_uevent() (git-fixes).\n- usb: gadget: fsl_qe_udc: validate endpoint index for ch9 udc (git-fixes).\n- usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs (git-fixes).\n- usb: gadget: udc: core: Offload usb_udc_vbus_handler processing (git-fixes).\n- usb: gadget: udc: core: Prevent soft_connect_store() race (git-fixes).\n- usb: gadget: udc: Handle gadget_connect failure during bind operation (git-fixes).\n- usb: hub: check for alternate port before enabling A_ALT_HNP_SUPPORT (bsc#1218527).\n- usb: hub: Replace hardcoded quirk value with BIT() macro (git-fixes).\n- usb: hub: Replace hardcoded quirk value with BIT() macro (git-fixes).\n- usb: roles: do not get/set_role() when usb_role_switch is unregistered (git-fixes).\n- usb: roles: fix NULL pointer issue when put module\u0027s reference (git-fixes).\n- usb: serial: cp210x: add ID for IMST iM871A-USB (git-fixes).\n- usb: serial: option: add Fibocom FM101-GL variant (git-fixes).\n- usb: serial: qcserial: add new usb-id for Dell Wireless DW5826e (git-fixes).\n- watchdog: it87_wdt: Keep WDTCTRL bit 3 unmodified for IT8784/IT8786 (git-fixes).\n- wifi: ath11k: fix registration of 6Ghz-only phy without the full channel range (git-fixes).\n- wifi: ath9k: Fix potential array-index-out-of-bounds read in ath9k_htc_txstatus() (git-fixes).\n- wifi: cfg80211: fix missing interfaces when dumping (git-fixes).\n- wifi: cfg80211: fix RCU dereference in __cfg80211_bss_update (git-fixes).\n- wifi: cfg80211: free beacon_ies when overridden from hidden BSS (git-fixes).\n- wifi: iwlwifi: Fix some error codes (git-fixes).\n- wifi: iwlwifi: mvm: avoid baid size integer overflow (git-fixes).\n- wifi: iwlwifi: uninitialized variable in iwl_acpi_get_ppag_table() (git-fixes).\n- wifi: mac80211: adding missing drv_mgd_complete_tx() call (git-fixes).\n- wifi: mac80211: fix race condition on enabling fast-xmit (git-fixes).\n- wifi: nl80211: reject iftype change with mesh ID change (git-fixes).\n- wifi: rt2x00: restart beacon queue when hardware reset (git-fixes).\n- wifi: rtl8xxxu: Add additional USB IDs for RTL8192EU devices (git-fixes).\n- wifi: rtlwifi: rtl8723{be,ae}: using calculate_bit_shift() (git-fixes).\n- wifi: wext-core: Fix -Wstringop-overflow warning in ioctl_standard_iw_point() (git-fixes).\n- x86/asm: Add _ASM_RIP() macro for x86-64 (%rip) suffix (git-fixes).\n- x86/bugs: Add asm helpers for executing VERW (git-fixes).\n- x86/bugs: Use ALTERNATIVE() instead of mds_user_clear static key (git-fixes). Also add mds_user_clear to kABI severities since it\u0027s strictly mitigation related so should be low risk.\n- x86/cpu: X86_FEATURE_INTEL_PPIN finally had a CPUID bit (jsc#PED-7618).\n- x86/entry_32: Add VERW just before userspace transition (git-fixes).\n- x86/entry_64: Add VERW just before userspace transition (git-fixes).\n- x86/mm: Fix memory encryption features advertisement (bsc#1206453).\n- xfs: remove unused fields from struct xbtree_ifakeroot (git-fixes).\n- xfs: short circuit xfs_growfs_data_private() if delta is zero (git-fixes).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-855,SUSE-SLE-Module-Public-Cloud-15-SP5-2024-855,openSUSE-SLE-15.5-2024-855",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0855-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:0855-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20240855-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:0855-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-March/018151.html"
},
{
"category": "self",
"summary": "SUSE Bug 1194869",
"url": "https://bugzilla.suse.com/1194869"
},
{
"category": "self",
"summary": "SUSE Bug 1206453",
"url": "https://bugzilla.suse.com/1206453"
},
{
"category": "self",
"summary": "SUSE Bug 1209412",
"url": "https://bugzilla.suse.com/1209412"
},
{
"category": "self",
"summary": "SUSE Bug 1216776",
"url": "https://bugzilla.suse.com/1216776"
},
{
"category": "self",
"summary": "SUSE Bug 1217927",
"url": "https://bugzilla.suse.com/1217927"
},
{
"category": "self",
"summary": "SUSE Bug 1218195",
"url": "https://bugzilla.suse.com/1218195"
},
{
"category": "self",
"summary": "SUSE Bug 1218216",
"url": "https://bugzilla.suse.com/1218216"
},
{
"category": "self",
"summary": "SUSE Bug 1218450",
"url": "https://bugzilla.suse.com/1218450"
},
{
"category": "self",
"summary": "SUSE Bug 1218527",
"url": "https://bugzilla.suse.com/1218527"
},
{
"category": "self",
"summary": "SUSE Bug 1218562",
"url": "https://bugzilla.suse.com/1218562"
},
{
"category": "self",
"summary": "SUSE Bug 1218663",
"url": "https://bugzilla.suse.com/1218663"
},
{
"category": "self",
"summary": "SUSE Bug 1218915",
"url": "https://bugzilla.suse.com/1218915"
},
{
"category": "self",
"summary": "SUSE Bug 1219126",
"url": "https://bugzilla.suse.com/1219126"
},
{
"category": "self",
"summary": "SUSE Bug 1219127",
"url": "https://bugzilla.suse.com/1219127"
},
{
"category": "self",
"summary": "SUSE Bug 1219141",
"url": "https://bugzilla.suse.com/1219141"
},
{
"category": "self",
"summary": "SUSE Bug 1219146",
"url": "https://bugzilla.suse.com/1219146"
},
{
"category": "self",
"summary": "SUSE Bug 1219295",
"url": "https://bugzilla.suse.com/1219295"
},
{
"category": "self",
"summary": "SUSE Bug 1219443",
"url": "https://bugzilla.suse.com/1219443"
},
{
"category": "self",
"summary": "SUSE Bug 1219653",
"url": "https://bugzilla.suse.com/1219653"
},
{
"category": "self",
"summary": "SUSE Bug 1219827",
"url": "https://bugzilla.suse.com/1219827"
},
{
"category": "self",
"summary": "SUSE Bug 1219835",
"url": "https://bugzilla.suse.com/1219835"
},
{
"category": "self",
"summary": "SUSE Bug 1219839",
"url": "https://bugzilla.suse.com/1219839"
},
{
"category": "self",
"summary": "SUSE Bug 1219840",
"url": "https://bugzilla.suse.com/1219840"
},
{
"category": "self",
"summary": "SUSE Bug 1219934",
"url": "https://bugzilla.suse.com/1219934"
},
{
"category": "self",
"summary": "SUSE Bug 1220003",
"url": "https://bugzilla.suse.com/1220003"
},
{
"category": "self",
"summary": "SUSE Bug 1220009",
"url": "https://bugzilla.suse.com/1220009"
},
{
"category": "self",
"summary": "SUSE Bug 1220021",
"url": "https://bugzilla.suse.com/1220021"
},
{
"category": "self",
"summary": "SUSE Bug 1220030",
"url": "https://bugzilla.suse.com/1220030"
},
{
"category": "self",
"summary": "SUSE Bug 1220106",
"url": "https://bugzilla.suse.com/1220106"
},
{
"category": "self",
"summary": "SUSE Bug 1220140",
"url": "https://bugzilla.suse.com/1220140"
},
{
"category": "self",
"summary": "SUSE Bug 1220187",
"url": "https://bugzilla.suse.com/1220187"
},
{
"category": "self",
"summary": "SUSE Bug 1220238",
"url": "https://bugzilla.suse.com/1220238"
},
{
"category": "self",
"summary": "SUSE Bug 1220240",
"url": "https://bugzilla.suse.com/1220240"
},
{
"category": "self",
"summary": "SUSE Bug 1220241",
"url": "https://bugzilla.suse.com/1220241"
},
{
"category": "self",
"summary": "SUSE Bug 1220243",
"url": "https://bugzilla.suse.com/1220243"
},
{
"category": "self",
"summary": "SUSE Bug 1220250",
"url": "https://bugzilla.suse.com/1220250"
},
{
"category": "self",
"summary": "SUSE Bug 1220251",
"url": "https://bugzilla.suse.com/1220251"
},
{
"category": "self",
"summary": "SUSE Bug 1220253",
"url": "https://bugzilla.suse.com/1220253"
},
{
"category": "self",
"summary": "SUSE Bug 1220254",
"url": "https://bugzilla.suse.com/1220254"
},
{
"category": "self",
"summary": "SUSE Bug 1220255",
"url": "https://bugzilla.suse.com/1220255"
},
{
"category": "self",
"summary": "SUSE Bug 1220257",
"url": "https://bugzilla.suse.com/1220257"
},
{
"category": "self",
"summary": "SUSE Bug 1220267",
"url": "https://bugzilla.suse.com/1220267"
},
{
"category": "self",
"summary": "SUSE Bug 1220277",
"url": "https://bugzilla.suse.com/1220277"
},
{
"category": "self",
"summary": "SUSE Bug 1220317",
"url": "https://bugzilla.suse.com/1220317"
},
{
"category": "self",
"summary": "SUSE Bug 1220325",
"url": "https://bugzilla.suse.com/1220325"
},
{
"category": "self",
"summary": "SUSE Bug 1220326",
"url": "https://bugzilla.suse.com/1220326"
},
{
"category": "self",
"summary": "SUSE Bug 1220328",
"url": "https://bugzilla.suse.com/1220328"
},
{
"category": "self",
"summary": "SUSE Bug 1220330",
"url": "https://bugzilla.suse.com/1220330"
},
{
"category": "self",
"summary": "SUSE Bug 1220335",
"url": "https://bugzilla.suse.com/1220335"
},
{
"category": "self",
"summary": "SUSE Bug 1220344",
"url": "https://bugzilla.suse.com/1220344"
},
{
"category": "self",
"summary": "SUSE Bug 1220348",
"url": "https://bugzilla.suse.com/1220348"
},
{
"category": "self",
"summary": "SUSE Bug 1220350",
"url": "https://bugzilla.suse.com/1220350"
},
{
"category": "self",
"summary": "SUSE Bug 1220364",
"url": "https://bugzilla.suse.com/1220364"
},
{
"category": "self",
"summary": "SUSE Bug 1220392",
"url": "https://bugzilla.suse.com/1220392"
},
{
"category": "self",
"summary": "SUSE Bug 1220393",
"url": "https://bugzilla.suse.com/1220393"
},
{
"category": "self",
"summary": "SUSE Bug 1220398",
"url": "https://bugzilla.suse.com/1220398"
},
{
"category": "self",
"summary": "SUSE Bug 1220409",
"url": "https://bugzilla.suse.com/1220409"
},
{
"category": "self",
"summary": "SUSE Bug 1220433",
"url": "https://bugzilla.suse.com/1220433"
},
{
"category": "self",
"summary": "SUSE Bug 1220444",
"url": "https://bugzilla.suse.com/1220444"
},
{
"category": "self",
"summary": "SUSE Bug 1220457",
"url": "https://bugzilla.suse.com/1220457"
},
{
"category": "self",
"summary": "SUSE Bug 1220459",
"url": "https://bugzilla.suse.com/1220459"
},
{
"category": "self",
"summary": "SUSE Bug 1220469",
"url": "https://bugzilla.suse.com/1220469"
},
{
"category": "self",
"summary": "SUSE Bug 1220649",
"url": "https://bugzilla.suse.com/1220649"
},
{
"category": "self",
"summary": "SUSE Bug 1220735",
"url": "https://bugzilla.suse.com/1220735"
},
{
"category": "self",
"summary": "SUSE Bug 1220736",
"url": "https://bugzilla.suse.com/1220736"
},
{
"category": "self",
"summary": "SUSE Bug 1220796",
"url": "https://bugzilla.suse.com/1220796"
},
{
"category": "self",
"summary": "SUSE Bug 1220825",
"url": "https://bugzilla.suse.com/1220825"
},
{
"category": "self",
"summary": "SUSE Bug 1220845",
"url": "https://bugzilla.suse.com/1220845"
},
{
"category": "self",
"summary": "SUSE Bug 1220848",
"url": "https://bugzilla.suse.com/1220848"
},
{
"category": "self",
"summary": "SUSE Bug 1220917",
"url": "https://bugzilla.suse.com/1220917"
},
{
"category": "self",
"summary": "SUSE Bug 1220930",
"url": "https://bugzilla.suse.com/1220930"
},
{
"category": "self",
"summary": "SUSE Bug 1220931",
"url": "https://bugzilla.suse.com/1220931"
},
{
"category": "self",
"summary": "SUSE Bug 1220933",
"url": "https://bugzilla.suse.com/1220933"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25162 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25162/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-46923 page",
"url": "https://www.suse.com/security/cve/CVE-2021-46923/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-46924 page",
"url": "https://www.suse.com/security/cve/CVE-2021-46924/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-46932 page",
"url": "https://www.suse.com/security/cve/CVE-2021-46932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-46934 page",
"url": "https://www.suse.com/security/cve/CVE-2021-46934/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-47083 page",
"url": "https://www.suse.com/security/cve/CVE-2021-47083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48627 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48627/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-48628 page",
"url": "https://www.suse.com/security/cve/CVE-2022-48628/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5197 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52340 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52340/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52429 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52429/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52439 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52439/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52443 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52443/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52445 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52445/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52447 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52447/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52448 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52448/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52449 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52449/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52451 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52451/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52452 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52452/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52456 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52456/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52457 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52457/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52462 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52462/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52463 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52463/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52464 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52464/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52467 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52467/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52475 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52475/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52478 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52478/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52482 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52482/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52530 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52530/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52531 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52531/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-52559 page",
"url": "https://www.suse.com/security/cve/CVE-2023-52559/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-6270 page",
"url": "https://www.suse.com/security/cve/CVE-2023-6270/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-6817 page",
"url": "https://www.suse.com/security/cve/CVE-2023-6817/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-0607 page",
"url": "https://www.suse.com/security/cve/CVE-2024-0607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-1151 page",
"url": "https://www.suse.com/security/cve/CVE-2024-1151/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23849 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23850 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23850/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-23851 page",
"url": "https://www.suse.com/security/cve/CVE-2024-23851/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-25744 page",
"url": "https://www.suse.com/security/cve/CVE-2024-25744/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26585 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26585/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26586 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26586/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26589 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26589/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26591 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26591/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26593 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26593/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26595 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26598 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26598/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26602 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26602/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26603 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26603/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26607 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26607/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-26622 page",
"url": "https://www.suse.com/security/cve/CVE-2024-26622/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2024-03-12T19:46:41Z",
"generator": {
"date": "2024-03-12T19:46:41Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:0855-1",
"initial_release_date": "2024-03-12T19:46:41Z",
"revision_history": [
{
"date": "2024-03-12T19:46:41Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product_id": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product_id": "dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product_id": "gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "kernel-azure-5.14.21-150500.33.37.1.aarch64",
"product_id": "kernel-azure-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"product_id": "kernel-azure-devel-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"product_id": "kernel-azure-extra-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"product_id": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"product_id": "kernel-azure-optional-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"product_id": "kernel-syms-azure-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product_id": "kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product_id": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product": {
"name": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"product_id": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"product": {
"name": "kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"product_id": "kernel-devel-azure-5.14.21-150500.33.37.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"product": {
"name": "kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"product_id": "kernel-source-azure-5.14.21-150500.33.37.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product_id": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product_id": "dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product_id": "gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "kernel-azure-5.14.21-150500.33.37.1.x86_64",
"product_id": "kernel-azure-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"product_id": "kernel-azure-devel-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"product_id": "kernel-azure-extra-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"product_id": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"product_id": "kernel-azure-optional-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"product_id": "kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"product_id": "kernel-syms-azure-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product_id": "kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product_id": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64"
}
},
{
"category": "product_version",
"name": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product": {
"name": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"product_id": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.5",
"product": {
"name": "openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.14.21-150500.33.37.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.14.21-150500.33.37.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.14.21-150500.33.37.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.14.21-150500.33.37.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-5.14.21-150500.33.37.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch"
},
"product_reference": "kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-5.14.21-150500.33.37.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch"
},
"product_reference": "kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.14.21-150500.33.37.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.14.21-150500.33.37.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-extra-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-optional-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-5.14.21-150500.33.37.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch"
},
"product_reference": "kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-5.14.21-150500.33.37.1.noarch as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch"
},
"product_reference": "kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64"
},
"product_reference": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64 as component of openSUSE Leap 15.5",
"product_id": "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
},
"product_reference": "reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25162",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25162"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: Fix a potential use after free\n\nFree the adap structure only after we are done using it.\nThis patch just moves the put_device() down a bit to avoid the\nuse after free.\n\n[wsa: added comment to the code, added Fixes tag]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25162",
"url": "https://www.suse.com/security/cve/CVE-2019-25162"
},
{
"category": "external",
"summary": "SUSE Bug 1220409 for CVE-2019-25162",
"url": "https://bugzilla.suse.com/1220409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2019-25162"
},
{
"cve": "CVE-2021-46923",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-46923"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/mount_setattr: always cleanup mount_kattr\n\nMake sure that finish_mount_kattr() is called after mount_kattr was\nsuccesfully built in both the success and failure case to prevent\nleaking any references we took when we built it. We returned early if\npath lookup failed thereby risking to leak an additional reference we\ntook when building mount_kattr when an idmapped mount was requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-46923",
"url": "https://www.suse.com/security/cve/CVE-2021-46923"
},
{
"category": "external",
"summary": "SUSE Bug 1220457 for CVE-2021-46923",
"url": "https://bugzilla.suse.com/1220457"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "low"
}
],
"title": "CVE-2021-46923"
},
{
"cve": "CVE-2021-46924",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-46924"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNFC: st21nfca: Fix memory leak in device probe and remove\n\n\u0027phy-\u003epending_skb\u0027 is alloced when device probe, but forgot to free\nin the error handling path and remove path, this cause memory leak\nas follows:\n\nunreferenced object 0xffff88800bc06800 (size 512):\n comm \"8\", pid 11775, jiffies 4295159829 (age 9.032s)\n hex dump (first 32 bytes):\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................\n backtrace:\n [\u003c00000000d66c09ce\u003e] __kmalloc_node_track_caller+0x1ed/0x450\n [\u003c00000000c93382b3\u003e] kmalloc_reserve+0x37/0xd0\n [\u003c000000005fea522c\u003e] __alloc_skb+0x124/0x380\n [\u003c0000000019f29f9a\u003e] st21nfca_hci_i2c_probe+0x170/0x8f2\n\nFix it by freeing \u0027pending_skb\u0027 in error and remove.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-46924",
"url": "https://www.suse.com/security/cve/CVE-2021-46924"
},
{
"category": "external",
"summary": "SUSE Bug 1220459 for CVE-2021-46924",
"url": "https://bugzilla.suse.com/1220459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2021-46924"
},
{
"cve": "CVE-2021-46932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-46932"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: appletouch - initialize work before device registration\n\nSyzbot has reported warning in __flush_work(). This warning is caused by\nwork-\u003efunc == NULL, which means missing work initialization.\n\nThis may happen, since input_dev-\u003eclose() calls\ncancel_work_sync(\u0026dev-\u003ework), but dev-\u003ework initalization happens _after_\ninput_register_device() call.\n\nSo this patch moves dev-\u003ework initialization before registering input\ndevice",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-46932",
"url": "https://www.suse.com/security/cve/CVE-2021-46932"
},
{
"category": "external",
"summary": "SUSE Bug 1220444 for CVE-2021-46932",
"url": "https://bugzilla.suse.com/1220444"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 2.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2021-46932"
},
{
"cve": "CVE-2021-46934",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-46934"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: validate user data in compat ioctl\n\nWrong user data may cause warning in i2c_transfer(), ex: zero msgs.\nUserspace should not be able to trigger warnings, so this patch adds\nvalidation checks for user data in compact ioctl to prevent reported\nwarnings",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-46934",
"url": "https://www.suse.com/security/cve/CVE-2021-46934"
},
{
"category": "external",
"summary": "SUSE Bug 1220469 for CVE-2021-46934",
"url": "https://bugzilla.suse.com/1220469"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "low"
}
],
"title": "CVE-2021-46934"
},
{
"cve": "CVE-2021-47083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-47083"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npinctrl: mediatek: fix global-out-of-bounds issue\n\nWhen eint virtual eint number is greater than gpio number,\nit maybe produce \u0027desc[eint_n]\u0027 size globle-out-of-bounds issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-47083",
"url": "https://www.suse.com/security/cve/CVE-2021-47083"
},
{
"category": "external",
"summary": "SUSE Bug 1220917 for CVE-2021-47083",
"url": "https://bugzilla.suse.com/1220917"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2021-47083"
},
{
"cve": "CVE-2022-48627",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48627"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nvt: fix memory overlapping when deleting chars in the buffer\n\nA memory overlapping copy occurs when deleting a long line. This memory\noverlapping copy can cause data corruption when scr_memcpyw is optimized\nto memcpy because memcpy does not ensure its behavior if the destination\nbuffer overlaps with the source buffer. The line buffer is not always\nbroken, because the memcpy utilizes the hardware acceleration, whose\nresult is not deterministic.\n\nFix this problem by using replacing the scr_memcpyw with scr_memmovew.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48627",
"url": "https://www.suse.com/security/cve/CVE-2022-48627"
},
{
"category": "external",
"summary": "SUSE Bug 1220845 for CVE-2022-48627",
"url": "https://bugzilla.suse.com/1220845"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2022-48627"
},
{
"cve": "CVE-2022-48628",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-48628"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: drop messages from MDS when unmounting\n\nWhen unmounting all the dirty buffers will be flushed and after\nthe last osd request is finished the last reference of the i_count\nwill be released. Then it will flush the dirty cap/snap to MDSs,\nand the unmounting won\u0027t wait the possible acks, which will ihold\nthe inodes when updating the metadata locally but makes no sense\nany more, of this. This will make the evict_inodes() to skip these\ninodes.\n\nIf encrypt is enabled the kernel generate a warning when removing\nthe encrypt keys when the skipped inodes still hold the keyring:\n\nWARNING: CPU: 4 PID: 168846 at fs/crypto/keyring.c:242 fscrypt_destroy_keyring+0x7e/0xd0\nCPU: 4 PID: 168846 Comm: umount Tainted: G S 6.1.0-rc5-ceph-g72ead199864c #1\nHardware name: Supermicro SYS-5018R-WR/X10SRW-F, BIOS 2.0 12/17/2015\nRIP: 0010:fscrypt_destroy_keyring+0x7e/0xd0\nRSP: 0018:ffffc9000b277e28 EFLAGS: 00010202\nRAX: 0000000000000002 RBX: ffff88810d52ac00 RCX: ffff88810b56aa00\nRDX: 0000000080000000 RSI: ffffffff822f3a09 RDI: ffff888108f59000\nRBP: ffff8881d394fb88 R08: 0000000000000028 R09: 0000000000000000\nR10: 0000000000000001 R11: 11ff4fe6834fcd91 R12: ffff8881d394fc40\nR13: ffff888108f59000 R14: ffff8881d394f800 R15: 0000000000000000\nFS: 00007fd83f6f1080(0000) GS:ffff88885fd00000(0000) knlGS:0000000000000000\nCS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f918d417000 CR3: 000000017f89a005 CR4: 00000000003706e0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nCall Trace:\n\u003cTASK\u003e\ngeneric_shutdown_super+0x47/0x120\nkill_anon_super+0x14/0x30\nceph_kill_sb+0x36/0x90 [ceph]\ndeactivate_locked_super+0x29/0x60\ncleanup_mnt+0xb8/0x140\ntask_work_run+0x67/0xb0\nexit_to_user_mode_prepare+0x23d/0x240\nsyscall_exit_to_user_mode+0x25/0x60\ndo_syscall_64+0x40/0x80\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7fd83dc39e9b\n\nLater the kernel will crash when iput() the inodes and dereferencing\nthe \"sb-\u003es_master_keys\", which has been released by the\ngeneric_shutdown_super().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-48628",
"url": "https://www.suse.com/security/cve/CVE-2022-48628"
},
{
"category": "external",
"summary": "SUSE Bug 1220848 for CVE-2022-48628",
"url": "https://bugzilla.suse.com/1220848"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2022-48628"
},
{
"cve": "CVE-2023-5197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5197"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in the Linux kernel\u0027s netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nAddition and removal of rules from chain bindings within the same transaction causes leads to use-after-free.\n\nWe recommend upgrading past commit f15f29fd4779be8a418b66e9d52979bb6d6c2325.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5197",
"url": "https://www.suse.com/security/cve/CVE-2023-5197"
},
{
"category": "external",
"summary": "SUSE Bug 1218216 for CVE-2023-5197",
"url": "https://bugzilla.suse.com/1218216"
},
{
"category": "external",
"summary": "SUSE Bug 1245974 for CVE-2023-5197",
"url": "https://bugzilla.suse.com/1245974"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "important"
}
],
"title": "CVE-2023-5197"
},
{
"cve": "CVE-2023-52340",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52340"
}
],
"notes": [
{
"category": "general",
"text": "The IPv6 implementation in the Linux kernel before 6.3 has a net/ipv6/route.c max_size threshold that can be consumed easily, e.g., leading to a denial of service (network is unreachable errors) when IPv6 packets are sent in a loop via a raw socket.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52340",
"url": "https://www.suse.com/security/cve/CVE-2023-52340"
},
{
"category": "external",
"summary": "SUSE Bug 1219295 for CVE-2023-52340",
"url": "https://bugzilla.suse.com/1219295"
},
{
"category": "external",
"summary": "SUSE Bug 1219296 for CVE-2023-52340",
"url": "https://bugzilla.suse.com/1219296"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-52340",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-52340",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "important"
}
],
"title": "CVE-2023-52340"
},
{
"cve": "CVE-2023-52429",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52429"
}
],
"notes": [
{
"category": "general",
"text": "dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52429",
"url": "https://www.suse.com/security/cve/CVE-2023-52429"
},
{
"category": "external",
"summary": "SUSE Bug 1219827 for CVE-2023-52429",
"url": "https://bugzilla.suse.com/1219827"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52429"
},
{
"cve": "CVE-2023-52439",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52439"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nuio: Fix use-after-free in uio_open\n\ncore-1\t\t\t\tcore-2\n-------------------------------------------------------\nuio_unregister_device\t\tuio_open\n\t\t\t\tidev = idr_find()\ndevice_unregister(\u0026idev-\u003edev)\nput_device(\u0026idev-\u003edev)\nuio_device_release\n\t\t\t\tget_device(\u0026idev-\u003edev)\nkfree(idev)\nuio_free_minor(minor)\n\t\t\t\tuio_release\n\t\t\t\tput_device(\u0026idev-\u003edev)\n\t\t\t\tkfree(idev)\n-------------------------------------------------------\n\nIn the core-1 uio_unregister_device(), the device_unregister will kfree\nidev when the idev-\u003edev kobject ref is 1. But after core-1\ndevice_unregister, put_device and before doing kfree, the core-2 may\nget_device. Then:\n1. After core-1 kfree idev, the core-2 will do use-after-free for idev.\n2. When core-2 do uio_release and put_device, the idev will be double\n freed.\n\nTo address this issue, we can get idev atomic \u0026 inc idev reference with\nminor_lock.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52439",
"url": "https://www.suse.com/security/cve/CVE-2023-52439"
},
{
"category": "external",
"summary": "SUSE Bug 1220140 for CVE-2023-52439",
"url": "https://bugzilla.suse.com/1220140"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52439"
},
{
"cve": "CVE-2023-52443",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52443"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\napparmor: avoid crash when parsed profile name is empty\n\nWhen processing a packed profile in unpack_profile() described like\n\n \"profile :ns::samba-dcerpcd /usr/lib*/samba/{,samba/}samba-dcerpcd {...}\"\n\na string \":samba-dcerpcd\" is unpacked as a fully-qualified name and then\npassed to aa_splitn_fqname().\n\naa_splitn_fqname() treats \":samba-dcerpcd\" as only containing a namespace.\nThus it returns NULL for tmpname, meanwhile tmpns is non-NULL. Later\naa_alloc_profile() crashes as the new profile name is NULL now.\n\ngeneral protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN NOPTI\nKASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]\nCPU: 6 PID: 1657 Comm: apparmor_parser Not tainted 6.7.0-rc2-dirty #16\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\nRIP: 0010:strlen+0x1e/0xa0\nCall Trace:\n \u003cTASK\u003e\n ? strlen+0x1e/0xa0\n aa_policy_init+0x1bb/0x230\n aa_alloc_profile+0xb1/0x480\n unpack_profile+0x3bc/0x4960\n aa_unpack+0x309/0x15e0\n aa_replace_profiles+0x213/0x33c0\n policy_update+0x261/0x370\n profile_replace+0x20e/0x2a0\n vfs_write+0x2af/0xe00\n ksys_write+0x126/0x250\n do_syscall_64+0x46/0xf0\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n \u003c/TASK\u003e\n---[ end trace 0000000000000000 ]---\nRIP: 0010:strlen+0x1e/0xa0\n\nIt seems such behaviour of aa_splitn_fqname() is expected and checked in\nother places where it is called (e.g. aa_remove_profiles). Well, there\nis an explicit comment \"a ns name without a following profile is allowed\"\ninside.\n\nAFAICS, nothing can prevent unpacked \"name\" to be in form like\n\":samba-dcerpcd\" - it is passed from userspace.\n\nDeny the whole profile set replacement in such case and inform user with\nEPROTO and an explaining message.\n\nFound by Linux Verification Center (linuxtesting.org).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52443",
"url": "https://www.suse.com/security/cve/CVE-2023-52443"
},
{
"category": "external",
"summary": "SUSE Bug 1220240 for CVE-2023-52443",
"url": "https://bugzilla.suse.com/1220240"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52443"
},
{
"cve": "CVE-2023-52445",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52445"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: pvrusb2: fix use after free on context disconnection\n\nUpon module load, a kthread is created targeting the\npvr2_context_thread_func function, which may call pvr2_context_destroy\nand thus call kfree() on the context object. However, that might happen\nbefore the usb hub_event handler is able to notify the driver. This\npatch adds a sanity check before the invalid read reported by syzbot,\nwithin the context disconnection call stack.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52445",
"url": "https://www.suse.com/security/cve/CVE-2023-52445"
},
{
"category": "external",
"summary": "SUSE Bug 1220241 for CVE-2023-52445",
"url": "https://bugzilla.suse.com/1220241"
},
{
"category": "external",
"summary": "SUSE Bug 1220315 for CVE-2023-52445",
"url": "https://bugzilla.suse.com/1220315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52445"
},
{
"cve": "CVE-2023-52447",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52447"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Defer the free of inner map when necessary\n\nWhen updating or deleting an inner map in map array or map htab, the map\nmay still be accessed by non-sleepable program or sleepable program.\nHowever bpf_map_fd_put_ptr() decreases the ref-counter of the inner map\ndirectly through bpf_map_put(), if the ref-counter is the last one\n(which is true for most cases), the inner map will be freed by\nops-\u003emap_free() in a kworker. But for now, most .map_free() callbacks\ndon\u0027t use synchronize_rcu() or its variants to wait for the elapse of a\nRCU grace period, so after the invocation of ops-\u003emap_free completes,\nthe bpf program which is accessing the inner map may incur\nuse-after-free problem.\n\nFix the free of inner map by invoking bpf_map_free_deferred() after both\none RCU grace period and one tasks trace RCU grace period if the inner\nmap has been removed from the outer map before. The deferment is\naccomplished by using call_rcu() or call_rcu_tasks_trace() when\nreleasing the last ref-counter of bpf map. The newly-added rcu_head\nfield in bpf_map shares the same storage space with work field to\nreduce the size of bpf_map.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52447",
"url": "https://www.suse.com/security/cve/CVE-2023-52447"
},
{
"category": "external",
"summary": "SUSE Bug 1220251 for CVE-2023-52447",
"url": "https://bugzilla.suse.com/1220251"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52447"
},
{
"cve": "CVE-2023-52448",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52448"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump\n\nSyzkaller has reported a NULL pointer dereference when accessing\nrgd-\u003erd_rgl in gfs2_rgrp_dump(). This can happen when creating\nrgd-\u003erd_gl fails in read_rindex_entry(). Add a NULL pointer check in\ngfs2_rgrp_dump() to prevent that.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52448",
"url": "https://www.suse.com/security/cve/CVE-2023-52448"
},
{
"category": "external",
"summary": "SUSE Bug 1220253 for CVE-2023-52448",
"url": "https://bugzilla.suse.com/1220253"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52448"
},
{
"cve": "CVE-2023-52449",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52449"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmtd: Fix gluebi NULL pointer dereference caused by ftl notifier\n\nIf both ftl.ko and gluebi.ko are loaded, the notifier of ftl\ntriggers NULL pointer dereference when trying to access\n\u0027gluebi-\u003edesc\u0027 in gluebi_read().\n\nubi_gluebi_init\n ubi_register_volume_notifier\n ubi_enumerate_volumes\n ubi_notify_all\n gluebi_notify nb-\u003enotifier_call()\n gluebi_create\n mtd_device_register\n mtd_device_parse_register\n add_mtd_device\n blktrans_notify_add not-\u003eadd()\n ftl_add_mtd tr-\u003eadd_mtd()\n scan_header\n mtd_read\n mtd_read_oob\n mtd_read_oob_std\n gluebi_read mtd-\u003eread()\n gluebi-\u003edesc - NULL\n\nDetailed reproduction information available at the Link [1],\n\nIn the normal case, obtain gluebi-\u003edesc in the gluebi_get_device(),\nand access gluebi-\u003edesc in the gluebi_read(). However,\ngluebi_get_device() is not executed in advance in the\nftl_add_mtd() process, which leads to NULL pointer dereference.\n\nThe solution for the gluebi module is to run jffs2 on the UBI\nvolume without considering working with ftl or mtdblock [2].\nTherefore, this problem can be avoided by preventing gluebi from\ncreating the mtdblock device after creating mtd partition of the\ntype MTD_UBIVOLUME.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52449",
"url": "https://www.suse.com/security/cve/CVE-2023-52449"
},
{
"category": "external",
"summary": "SUSE Bug 1220238 for CVE-2023-52449",
"url": "https://bugzilla.suse.com/1220238"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52449"
},
{
"cve": "CVE-2023-52451",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52451"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\npowerpc/pseries/memhp: Fix access beyond end of drmem array\n\ndlpar_memory_remove_by_index() may access beyond the bounds of the\ndrmem lmb array when the LMB lookup fails to match an entry with the\ngiven DRC index. When the search fails, the cursor is left pointing to\n\u0026drmem_info-\u003elmbs[drmem_info-\u003en_lmbs], which is one element past the\nlast valid entry in the array. The debug message at the end of the\nfunction then dereferences this pointer:\n\n pr_debug(\"Failed to hot-remove memory at %llx\\n\",\n lmb-\u003ebase_addr);\n\nThis was found by inspection and confirmed with KASAN:\n\n pseries-hotplug-mem: Attempting to hot-remove LMB, drc index 1234\n ==================================================================\n BUG: KASAN: slab-out-of-bounds in dlpar_memory+0x298/0x1658\n Read of size 8 at addr c000000364e97fd0 by task bash/949\n\n dump_stack_lvl+0xa4/0xfc (unreliable)\n print_report+0x214/0x63c\n kasan_report+0x140/0x2e0\n __asan_load8+0xa8/0xe0\n dlpar_memory+0x298/0x1658\n handle_dlpar_errorlog+0x130/0x1d0\n dlpar_store+0x18c/0x3e0\n kobj_attr_store+0x68/0xa0\n sysfs_kf_write+0xc4/0x110\n kernfs_fop_write_iter+0x26c/0x390\n vfs_write+0x2d4/0x4e0\n ksys_write+0xac/0x1a0\n system_call_exception+0x268/0x530\n system_call_vectored_common+0x15c/0x2ec\n\n Allocated by task 1:\n kasan_save_stack+0x48/0x80\n kasan_set_track+0x34/0x50\n kasan_save_alloc_info+0x34/0x50\n __kasan_kmalloc+0xd0/0x120\n __kmalloc+0x8c/0x320\n kmalloc_array.constprop.0+0x48/0x5c\n drmem_init+0x2a0/0x41c\n do_one_initcall+0xe0/0x5c0\n kernel_init_freeable+0x4ec/0x5a0\n kernel_init+0x30/0x1e0\n ret_from_kernel_user_thread+0x14/0x1c\n\n The buggy address belongs to the object at c000000364e80000\n which belongs to the cache kmalloc-128k of size 131072\n The buggy address is located 0 bytes to the right of\n allocated 98256-byte region [c000000364e80000, c000000364e97fd0)\n\n ==================================================================\n pseries-hotplug-mem: Failed to hot-remove memory at 0\n\nLog failed lookups with a separate message and dereference the\ncursor only when it points to a valid entry.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52451",
"url": "https://www.suse.com/security/cve/CVE-2023-52451"
},
{
"category": "external",
"summary": "SUSE Bug 1220250 for CVE-2023-52451",
"url": "https://bugzilla.suse.com/1220250"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52451"
},
{
"cve": "CVE-2023-52452",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52452"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix accesses to uninit stack slots\n\nPrivileged programs are supposed to be able to read uninitialized stack\nmemory (ever since 6715df8d5) but, before this patch, these accesses\nwere permitted inconsistently. In particular, accesses were permitted\nabove state-\u003eallocated_stack, but not below it. In other words, if the\nstack was already \"large enough\", the access was permitted, but\notherwise the access was rejected instead of being allowed to \"grow the\nstack\". This undesired rejection was happening in two places:\n- in check_stack_slot_within_bounds()\n- in check_stack_range_initialized()\nThis patch arranges for these accesses to be permitted. A bunch of tests\nthat were relying on the old rejection had to change; all of them were\nchanged to add also run unprivileged, in which case the old behavior\npersists. One tests couldn\u0027t be updated - global_func16 - because it\ncan\u0027t run unprivileged for other reasons.\n\nThis patch also fixes the tracking of the stack size for variable-offset\nreads. This second fix is bundled in the same commit as the first one\nbecause they\u0027re inter-related. Before this patch, writes to the stack\nusing registers containing a variable offset (as opposed to registers\nwith fixed, known values) were not properly contributing to the\nfunction\u0027s needed stack size. As a result, it was possible for a program\nto verify, but then to attempt to read out-of-bounds data at runtime\nbecause a too small stack had been allocated for it.\n\nEach function tracks the size of the stack it needs in\nbpf_subprog_info.stack_depth, which is maintained by\nupdate_stack_depth(). For regular memory accesses, check_mem_access()\nwas calling update_state_depth() but it was passing in only the fixed\npart of the offset register, ignoring the variable offset. This was\nincorrect; the minimum possible value of that register should be used\ninstead.\n\nThis tracking is now fixed by centralizing the tracking of stack size in\ngrow_stack_state(), and by lifting the calls to grow_stack_state() to\ncheck_stack_access_within_bounds() as suggested by Andrii. The code is\nnow simpler and more convincingly tracks the correct maximum stack size.\ncheck_stack_range_initialized() can now rely on enough stack having been\nallocated for the access; this helps with the fix for the first issue.\n\nA few tests were changed to also check the stack depth computation. The\none that fails without this patch is verifier_var_off:stack_write_priv_vs_unpriv.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52452",
"url": "https://www.suse.com/security/cve/CVE-2023-52452"
},
{
"category": "external",
"summary": "SUSE Bug 1220257 for CVE-2023-52452",
"url": "https://bugzilla.suse.com/1220257"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52452"
},
{
"cve": "CVE-2023-52456",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52456"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: imx: fix tx statemachine deadlock\n\nWhen using the serial port as RS485 port, the tx statemachine is used to\ncontrol the RTS pin to drive the RS485 transceiver TX_EN pin. When the\nTTY port is closed in the middle of a transmission (for instance during\nuserland application crash), imx_uart_shutdown disables the interface\nand disables the Transmission Complete interrupt. afer that,\nimx_uart_stop_tx bails on an incomplete transmission, to be retriggered\nby the TC interrupt. This interrupt is disabled and therefore the tx\nstatemachine never transitions out of SEND. The statemachine is in\ndeadlock now, and the TX_EN remains low, making the interface useless.\n\nimx_uart_stop_tx now checks for incomplete transmission AND whether TC\ninterrupts are enabled before bailing to be retriggered. This makes sure\nthe state machine handling is reached, and is properly set to\nWAIT_AFTER_SEND.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52456",
"url": "https://www.suse.com/security/cve/CVE-2023-52456"
},
{
"category": "external",
"summary": "SUSE Bug 1220364 for CVE-2023-52456",
"url": "https://bugzilla.suse.com/1220364"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52456"
},
{
"cve": "CVE-2023-52457",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52457"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nserial: 8250: omap: Don\u0027t skip resource freeing if pm_runtime_resume_and_get() failed\n\nReturning an error code from .remove() makes the driver core emit the\nlittle helpful error message:\n\n\tremove callback returned a non-zero value. This will be ignored.\n\nand then remove the device anyhow. So all resources that were not freed\nare leaked in this case. Skipping serial8250_unregister_port() has the\npotential to keep enough of the UART around to trigger a use-after-free.\n\nSo replace the error return (and with it the little helpful error\nmessage) by a more useful error message and continue to cleanup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52457",
"url": "https://www.suse.com/security/cve/CVE-2023-52457"
},
{
"category": "external",
"summary": "SUSE Bug 1220350 for CVE-2023-52457",
"url": "https://bugzilla.suse.com/1220350"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52457"
},
{
"cve": "CVE-2023-52462",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52462"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: fix check for attempt to corrupt spilled pointer\n\nWhen register is spilled onto a stack as a 1/2/4-byte register, we set\nslot_type[BPF_REG_SIZE - 1] (plus potentially few more below it,\ndepending on actual spill size). So to check if some stack slot has\nspilled register we need to consult slot_type[7], not slot_type[0].\n\nTo avoid the need to remember and double-check this in the future, just\nuse is_spilled_reg() helper.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52462",
"url": "https://www.suse.com/security/cve/CVE-2023-52462"
},
{
"category": "external",
"summary": "SUSE Bug 1220325 for CVE-2023-52462",
"url": "https://bugzilla.suse.com/1220325"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52462"
},
{
"cve": "CVE-2023-52463",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52463"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefivarfs: force RO when remounting if SetVariable is not supported\n\nIf SetVariable at runtime is not supported by the firmware we never assign\na callback for that function. At the same time mount the efivarfs as\nRO so no one can call that. However, we never check the permission flags\nwhen someone remounts the filesystem as RW. As a result this leads to a\ncrash looking like this:\n\n$ mount -o remount,rw /sys/firmware/efi/efivars\n$ efi-updatevar -f PK.auth PK\n\n[ 303.279166] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n[ 303.280482] Mem abort info:\n[ 303.280854] ESR = 0x0000000086000004\n[ 303.281338] EC = 0x21: IABT (current EL), IL = 32 bits\n[ 303.282016] SET = 0, FnV = 0\n[ 303.282414] EA = 0, S1PTW = 0\n[ 303.282821] FSC = 0x04: level 0 translation fault\n[ 303.283771] user pgtable: 4k pages, 48-bit VAs, pgdp=000000004258c000\n[ 303.284913] [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n[ 303.286076] Internal error: Oops: 0000000086000004 [#1] PREEMPT SMP\n[ 303.286936] Modules linked in: qrtr tpm_tis tpm_tis_core crct10dif_ce arm_smccc_trng rng_core drm fuse ip_tables x_tables ipv6\n[ 303.288586] CPU: 1 PID: 755 Comm: efi-updatevar Not tainted 6.3.0-rc1-00108-gc7d0c4695c68 #1\n[ 303.289748] Hardware name: Unknown Unknown Product/Unknown Product, BIOS 2023.04-00627-g88336918701d 04/01/2023\n[ 303.291150] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[ 303.292123] pc : 0x0\n[ 303.292443] lr : efivar_set_variable_locked+0x74/0xec\n[ 303.293156] sp : ffff800008673c10\n[ 303.293619] x29: ffff800008673c10 x28: ffff0000037e8000 x27: 0000000000000000\n[ 303.294592] x26: 0000000000000800 x25: ffff000002467400 x24: 0000000000000027\n[ 303.295572] x23: ffffd49ea9832000 x22: ffff0000020c9800 x21: ffff000002467000\n[ 303.296566] x20: 0000000000000001 x19: 00000000000007fc x18: 0000000000000000\n[ 303.297531] x17: 0000000000000000 x16: 0000000000000000 x15: 0000aaaac807ab54\n[ 303.298495] x14: ed37489f673633c0 x13: 71c45c606de13f80 x12: 47464259e219acf4\n[ 303.299453] x11: ffff000002af7b01 x10: 0000000000000003 x9 : 0000000000000002\n[ 303.300431] x8 : 0000000000000010 x7 : ffffd49ea8973230 x6 : 0000000000a85201\n[ 303.301412] x5 : 0000000000000000 x4 : ffff0000020c9800 x3 : 00000000000007fc\n[ 303.302370] x2 : 0000000000000027 x1 : ffff000002467400 x0 : ffff000002467000\n[ 303.303341] Call trace:\n[ 303.303679] 0x0\n[ 303.303938] efivar_entry_set_get_size+0x98/0x16c\n[ 303.304585] efivarfs_file_write+0xd0/0x1a4\n[ 303.305148] vfs_write+0xc4/0x2e4\n[ 303.305601] ksys_write+0x70/0x104\n[ 303.306073] __arm64_sys_write+0x1c/0x28\n[ 303.306622] invoke_syscall+0x48/0x114\n[ 303.307156] el0_svc_common.constprop.0+0x44/0xec\n[ 303.307803] do_el0_svc+0x38/0x98\n[ 303.308268] el0_svc+0x2c/0x84\n[ 303.308702] el0t_64_sync_handler+0xf4/0x120\n[ 303.309293] el0t_64_sync+0x190/0x194\n[ 303.309794] Code: ???????? ???????? ???????? ???????? (????????)\n[ 303.310612] ---[ end trace 0000000000000000 ]---\n\nFix this by adding a .reconfigure() function to the fs operations which\nwe can use to check the requested flags and deny anything that\u0027s not RO\nif the firmware doesn\u0027t implement SetVariable at runtime.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52463",
"url": "https://www.suse.com/security/cve/CVE-2023-52463"
},
{
"category": "external",
"summary": "SUSE Bug 1220328 for CVE-2023-52463",
"url": "https://bugzilla.suse.com/1220328"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52463"
},
{
"cve": "CVE-2023-52464",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52464"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nEDAC/thunderx: Fix possible out-of-bounds string access\n\nEnabling -Wstringop-overflow globally exposes a warning for a common bug\nin the usage of strncat():\n\n drivers/edac/thunderx_edac.c: In function \u0027thunderx_ocx_com_threaded_isr\u0027:\n drivers/edac/thunderx_edac.c:1136:17: error: \u0027strncat\u0027 specified bound 1024 equals destination size [-Werror=stringop-overflow=]\n 1136 | strncat(msg, other, OCX_MESSAGE_SIZE);\n | ^~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n ...\n 1145 | strncat(msg, other, OCX_MESSAGE_SIZE);\n ...\n 1150 | strncat(msg, other, OCX_MESSAGE_SIZE);\n\n ...\n\nApparently the author of this driver expected strncat() to behave the\nway that strlcat() does, which uses the size of the destination buffer\nas its third argument rather than the length of the source buffer. The\nresult is that there is no check on the size of the allocated buffer.\n\nChange it to strlcat().\n\n [ bp: Trim compiler output, fixup commit message. ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52464",
"url": "https://www.suse.com/security/cve/CVE-2023-52464"
},
{
"category": "external",
"summary": "SUSE Bug 1220330 for CVE-2023-52464",
"url": "https://bugzilla.suse.com/1220330"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52464"
},
{
"cve": "CVE-2023-52467",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52467"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmfd: syscon: Fix null pointer dereference in of_syscon_register()\n\nkasprintf() returns a pointer to dynamically allocated memory\nwhich can be NULL upon failure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52467",
"url": "https://www.suse.com/security/cve/CVE-2023-52467"
},
{
"category": "external",
"summary": "SUSE Bug 1220433 for CVE-2023-52467",
"url": "https://bugzilla.suse.com/1220433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52467"
},
{
"cve": "CVE-2023-52475",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52475"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nInput: powermate - fix use-after-free in powermate_config_complete\n\nsyzbot has found a use-after-free bug [1] in the powermate driver. This\nhappens when the device is disconnected, which leads to a memory free from\nthe powermate_device struct. When an asynchronous control message\ncompletes after the kfree and its callback is invoked, the lock does not\nexist anymore and hence the bug.\n\nUse usb_kill_urb() on pm-\u003econfig to cancel any in-progress requests upon\ndevice disconnection.\n\n[1] https://syzkaller.appspot.com/bug?extid=0434ac83f907a1dbdd1e",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52475",
"url": "https://www.suse.com/security/cve/CVE-2023-52475"
},
{
"category": "external",
"summary": "SUSE Bug 1220649 for CVE-2023-52475",
"url": "https://bugzilla.suse.com/1220649"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52475"
},
{
"cve": "CVE-2023-52478",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52478"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nHID: logitech-hidpp: Fix kernel crash on receiver USB disconnect\n\nhidpp_connect_event() has *four* time-of-check vs time-of-use (TOCTOU)\nraces when it races with itself.\n\nhidpp_connect_event() primarily runs from a workqueue but it also runs\non probe() and if a \"device-connected\" packet is received by the hw\nwhen the thread running hidpp_connect_event() from probe() is waiting on\nthe hw, then a second thread running hidpp_connect_event() will be\nstarted from the workqueue.\n\nThis opens the following races (note the below code is simplified):\n\n1. Retrieving + printing the protocol (harmless race):\n\n\tif (!hidpp-\u003eprotocol_major) {\n\t\thidpp_root_get_protocol_version()\n\t\thidpp-\u003eprotocol_major = response.rap.params[0];\n\t}\n\nWe can actually see this race hit in the dmesg in the abrt output\nattached to rhbz#2227968:\n\n[ 3064.624215] logitech-hidpp-device 0003:046D:4071.0049: HID++ 4.5 device connected.\n[ 3064.658184] logitech-hidpp-device 0003:046D:4071.0049: HID++ 4.5 device connected.\n\nTesting with extra logging added has shown that after this the 2 threads\ntake turn grabbing the hw access mutex (send_mutex) so they ping-pong\nthrough all the other TOCTOU cases managing to hit all of them:\n\n2. Updating the name to the HIDPP name (harmless race):\n\n\tif (hidpp-\u003ename == hdev-\u003ename) {\n\t\t...\n\t\thidpp-\u003ename = new_name;\n\t}\n\n3. Initializing the power_supply class for the battery (problematic!):\n\nhidpp_initialize_battery()\n{\n if (hidpp-\u003ebattery.ps)\n return 0;\n\n\tprobe_battery(); /* Blocks, threads take turns executing this */\n\n\thidpp-\u003ebattery.desc.properties =\n\t\tdevm_kmemdup(dev, hidpp_battery_props, cnt, GFP_KERNEL);\n\n\thidpp-\u003ebattery.ps =\n\t\tdevm_power_supply_register(\u0026hidpp-\u003ehid_dev-\u003edev,\n\t\t\t\t\t \u0026hidpp-\u003ebattery.desc, cfg);\n}\n\n4. Creating delayed input_device (potentially problematic):\n\n\tif (hidpp-\u003edelayed_input)\n\t\treturn;\n\n\thidpp-\u003edelayed_input = hidpp_allocate_input(hdev);\n\nThe really big problem here is 3. Hitting the race leads to the following\nsequence:\n\n\thidpp-\u003ebattery.desc.properties =\n\t\tdevm_kmemdup(dev, hidpp_battery_props, cnt, GFP_KERNEL);\n\n\thidpp-\u003ebattery.ps =\n\t\tdevm_power_supply_register(\u0026hidpp-\u003ehid_dev-\u003edev,\n\t\t\t\t\t \u0026hidpp-\u003ebattery.desc, cfg);\n\n\t...\n\n\thidpp-\u003ebattery.desc.properties =\n\t\tdevm_kmemdup(dev, hidpp_battery_props, cnt, GFP_KERNEL);\n\n\thidpp-\u003ebattery.ps =\n\t\tdevm_power_supply_register(\u0026hidpp-\u003ehid_dev-\u003edev,\n\t\t\t\t\t \u0026hidpp-\u003ebattery.desc, cfg);\n\nSo now we have registered 2 power supplies for the same battery,\nwhich looks a bit weird from userspace\u0027s pov but this is not even\nthe really big problem.\n\nNotice how:\n\n1. This is all devm-maganaged\n2. The hidpp-\u003ebattery.desc struct is shared between the 2 power supplies\n3. hidpp-\u003ebattery.desc.properties points to the result from the second\n devm_kmemdup()\n\nThis causes a use after free scenario on USB disconnect of the receiver:\n1. The last registered power supply class device gets unregistered\n2. The memory from the last devm_kmemdup() call gets freed,\n hidpp-\u003ebattery.desc.properties now points to freed memory\n3. The first registered power supply class device gets unregistered,\n this involves sending a remove uevent to userspace which invokes\n power_supply_uevent() to fill the uevent data\n4. power_supply_uevent() uses hidpp-\u003ebattery.desc.properties which\n now points to freed memory leading to backtraces like this one:\n\nSep 22 20:01:35 eric kernel: BUG: unable to handle page fault for address: ffffb2140e017f08\n...\nSep 22 20:01:35 eric kernel: Workqueue: usb_hub_wq hub_event\nSep 22 20:01:35 eric kernel: RIP: 0010:power_supply_uevent+0xee/0x1d0\n...\nSep 22 20:01:35 eric kernel: ? asm_exc_page_fault+0x26/0x30\nSep 22 20:01:35 eric kernel: ? power_supply_uevent+0xee/0x1d0\nSep 22 20:01:35 eric kernel: ? power_supply_uevent+0x10d/0x1d0\nSep 22 20:01:35 eric kernel: dev_uevent+0x10f/0x2d0\nSep 22 20:01:35 eric kernel: kobject_uevent_env+0x291/0x680\nSep 22 20:01:35 eric kernel: \n---truncated---",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52478",
"url": "https://www.suse.com/security/cve/CVE-2023-52478"
},
{
"category": "external",
"summary": "SUSE Bug 1220796 for CVE-2023-52478",
"url": "https://bugzilla.suse.com/1220796"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52478"
},
{
"cve": "CVE-2023-52482",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52482"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/srso: Add SRSO mitigation for Hygon processors\n\nAdd mitigation for the speculative return stack overflow vulnerability\nwhich exists on Hygon processors too.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52482",
"url": "https://www.suse.com/security/cve/CVE-2023-52482"
},
{
"category": "external",
"summary": "SUSE Bug 1220735 for CVE-2023-52482",
"url": "https://bugzilla.suse.com/1220735"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52482"
},
{
"cve": "CVE-2023-52530",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52530"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: mac80211: fix potential key use-after-free\n\nWhen ieee80211_key_link() is called by ieee80211_gtk_rekey_add()\nbut returns 0 due to KRACK protection (identical key reinstall),\nieee80211_gtk_rekey_add() will still return a pointer into the\nkey, in a potential use-after-free. This normally doesn\u0027t happen\nsince it\u0027s only called by iwlwifi in case of WoWLAN rekey offload\nwhich has its own KRACK protection, but still better to fix, do\nthat by returning an error code and converting that to success on\nthe cfg80211 boundary only, leaving the error for bad callers of\nieee80211_gtk_rekey_add().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52530",
"url": "https://www.suse.com/security/cve/CVE-2023-52530"
},
{
"category": "external",
"summary": "SUSE Bug 1220930 for CVE-2023-52530",
"url": "https://bugzilla.suse.com/1220930"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52530"
},
{
"cve": "CVE-2023-52531",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52531"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: Fix a memory corruption issue\n\nA few lines above, space is kzalloc()\u0027ed for:\n\tsizeof(struct iwl_nvm_data) +\n\tsizeof(struct ieee80211_channel) +\n\tsizeof(struct ieee80211_rate)\n\n\u0027mvm-\u003envm_data\u0027 is a \u0027struct iwl_nvm_data\u0027, so it is fine.\n\nAt the end of this structure, there is the \u0027channels\u0027 flex array.\nEach element is of type \u0027struct ieee80211_channel\u0027.\nSo only 1 element is allocated in this array.\n\nWhen doing:\n mvm-\u003envm_data-\u003ebands[0].channels = mvm-\u003envm_data-\u003echannels;\nWe point at the first element of the \u0027channels\u0027 flex array.\nSo this is fine.\n\nHowever, when doing:\n mvm-\u003envm_data-\u003ebands[0].bitrates =\n\t\t\t(void *)((u8 *)mvm-\u003envm_data-\u003echannels + 1);\nbecause of the \"(u8 *)\" cast, we add only 1 to the address of the beginning\nof the flex array.\n\nIt is likely that we want point at the \u0027struct ieee80211_rate\u0027 allocated\njust after.\n\nRemove the spurious casting so that the pointer arithmetic works as\nexpected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52531",
"url": "https://www.suse.com/security/cve/CVE-2023-52531"
},
{
"category": "external",
"summary": "SUSE Bug 1220931 for CVE-2023-52531",
"url": "https://bugzilla.suse.com/1220931"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52531"
},
{
"cve": "CVE-2023-52559",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-52559"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Avoid memory allocation in iommu_suspend()\n\nThe iommu_suspend() syscore suspend callback is invoked with IRQ disabled.\nAllocating memory with the GFP_KERNEL flag may re-enable IRQs during\nthe suspend callback, which can cause intermittent suspend/hibernation\nproblems with the following kernel traces:\n\nCalling iommu_suspend+0x0/0x1d0\n------------[ cut here ]------------\nWARNING: CPU: 0 PID: 15 at kernel/time/timekeeping.c:868 ktime_get+0x9b/0xb0\n...\nCPU: 0 PID: 15 Comm: rcu_preempt Tainted: G U E 6.3-intel #r1\nRIP: 0010:ktime_get+0x9b/0xb0\n...\nCall Trace:\n \u003cIRQ\u003e\n tick_sched_timer+0x22/0x90\n ? __pfx_tick_sched_timer+0x10/0x10\n __hrtimer_run_queues+0x111/0x2b0\n hrtimer_interrupt+0xfa/0x230\n __sysvec_apic_timer_interrupt+0x63/0x140\n sysvec_apic_timer_interrupt+0x7b/0xa0\n \u003c/IRQ\u003e\n \u003cTASK\u003e\n asm_sysvec_apic_timer_interrupt+0x1f/0x30\n...\n------------[ cut here ]------------\nInterrupts enabled after iommu_suspend+0x0/0x1d0\nWARNING: CPU: 0 PID: 27420 at drivers/base/syscore.c:68 syscore_suspend+0x147/0x270\nCPU: 0 PID: 27420 Comm: rtcwake Tainted: G U W E 6.3-intel #r1\nRIP: 0010:syscore_suspend+0x147/0x270\n...\nCall Trace:\n \u003cTASK\u003e\n hibernation_snapshot+0x25b/0x670\n hibernate+0xcd/0x390\n state_store+0xcf/0xe0\n kobj_attr_store+0x13/0x30\n sysfs_kf_write+0x3f/0x50\n kernfs_fop_write_iter+0x128/0x200\n vfs_write+0x1fd/0x3c0\n ksys_write+0x6f/0xf0\n __x64_sys_write+0x1d/0x30\n do_syscall_64+0x3b/0x90\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\n\nGiven that only 4 words memory is needed, avoid the memory allocation in\niommu_suspend().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-52559",
"url": "https://www.suse.com/security/cve/CVE-2023-52559"
},
{
"category": "external",
"summary": "SUSE Bug 1220933 for CVE-2023-52559",
"url": "https://bugzilla.suse.com/1220933"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-52559"
},
{
"cve": "CVE-2023-6270",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-6270"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` global queue. This could lead to a denial of service condition or potential code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-6270",
"url": "https://www.suse.com/security/cve/CVE-2023-6270"
},
{
"category": "external",
"summary": "SUSE Bug 1218562 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1218562"
},
{
"category": "external",
"summary": "SUSE Bug 1218813 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1218813"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1223016 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1223016"
},
{
"category": "external",
"summary": "SUSE Bug 1227675 for CVE-2023-6270",
"url": "https://bugzilla.suse.com/1227675"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-6270"
},
{
"cve": "CVE-2023-6817",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-6817"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in the Linux kernel\u0027s netfilter: nf_tables component can be exploited to achieve local privilege escalation.\n\nThe function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free.\n\nWe recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-6817",
"url": "https://www.suse.com/security/cve/CVE-2023-6817"
},
{
"category": "external",
"summary": "SUSE Bug 1218195 for CVE-2023-6817",
"url": "https://bugzilla.suse.com/1218195"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2023-6817"
},
{
"cve": "CVE-2024-0607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-0607"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in the Netfilter subsystem in the Linux kernel. The issue is in the nft_byteorder_eval() function, where the code iterates through a loop and writes to the `dst` array. On each iteration, 8 bytes are written, but `dst` is an array of u32, so each element only has space for 4 bytes. That means every iteration overwrites part of the previous element corrupting this array of u32. This flaw allows a local user to cause a denial of service or potentially break NetFilter functionality.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-0607",
"url": "https://www.suse.com/security/cve/CVE-2024-0607"
},
{
"category": "external",
"summary": "SUSE Bug 1218915 for CVE-2024-0607",
"url": "https://bugzilla.suse.com/1218915"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-0607"
},
{
"cve": "CVE-2024-1151",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-1151"
}
],
"notes": [
{
"category": "general",
"text": "A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel. The flaw occurs when a recursive operation of code push recursively calls into the code block. The OVS module does not validate the stack depth, pushing too many frames and causing a stack overflow. As a result, this can lead to a crash or other related issues.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-1151",
"url": "https://www.suse.com/security/cve/CVE-2024-1151"
},
{
"category": "external",
"summary": "SUSE Bug 1219835 for CVE-2024-1151",
"url": "https://bugzilla.suse.com/1219835"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-1151"
},
{
"cve": "CVE-2024-23849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23849"
}
],
"notes": [
{
"category": "general",
"text": "In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off-by-one error for an RDS_MSG_RX_DGRAM_TRACE_MAX comparison, resulting in out-of-bounds access.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23849",
"url": "https://www.suse.com/security/cve/CVE-2024-23849"
},
{
"category": "external",
"summary": "SUSE Bug 1219127 for CVE-2024-23849",
"url": "https://bugzilla.suse.com/1219127"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-23849"
},
{
"cve": "CVE-2024-23850",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23850"
}
],
"notes": [
{
"category": "general",
"text": "In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23850",
"url": "https://www.suse.com/security/cve/CVE-2024-23850"
},
{
"category": "external",
"summary": "SUSE Bug 1219126 for CVE-2024-23850",
"url": "https://bugzilla.suse.com/1219126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-23850"
},
{
"cve": "CVE-2024-23851",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-23851"
}
],
"notes": [
{
"category": "general",
"text": "copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missing param_kernel-\u003edata_size check. This is related to ctl_ioctl.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-23851",
"url": "https://www.suse.com/security/cve/CVE-2024-23851"
},
{
"category": "external",
"summary": "SUSE Bug 1219146 for CVE-2024-23851",
"url": "https://bugzilla.suse.com/1219146"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-23851"
},
{
"cve": "CVE-2024-25744",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-25744"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-25744",
"url": "https://www.suse.com/security/cve/CVE-2024-25744"
},
{
"category": "external",
"summary": "SUSE Bug 1217927 for CVE-2024-25744",
"url": "https://bugzilla.suse.com/1217927"
},
{
"category": "external",
"summary": "SUSE Bug 1220314 for CVE-2024-25744",
"url": "https://bugzilla.suse.com/1220314"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "important"
}
],
"title": "CVE-2024-25744"
},
{
"cve": "CVE-2024-26585",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26585"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntls: fix race between tx work scheduling and socket close\n\nSimilarly to previous commit, the submitting thread (recvmsg/sendmsg)\nmay exit as soon as the async crypto handler calls complete().\nReorder scheduling the work before calling complete().\nThis seems more logical in the first place, as it\u0027s\nthe inverse order of what the submitting thread will do.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26585",
"url": "https://www.suse.com/security/cve/CVE-2024-26585"
},
{
"category": "external",
"summary": "SUSE Bug 1220187 for CVE-2024-26585",
"url": "https://bugzilla.suse.com/1220187"
},
{
"category": "external",
"summary": "SUSE Bug 1220211 for CVE-2024-26585",
"url": "https://bugzilla.suse.com/1220211"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2024-26585",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2024-26585",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "important"
}
],
"title": "CVE-2024-26585"
},
{
"cve": "CVE-2024-26586",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26586"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_acl_tcam: Fix stack corruption\n\nWhen tc filters are first added to a net device, the corresponding local\nport gets bound to an ACL group in the device. The group contains a list\nof ACLs. In turn, each ACL points to a different TCAM region where the\nfilters are stored. During forwarding, the ACLs are sequentially\nevaluated until a match is found.\n\nOne reason to place filters in different regions is when they are added\nwith decreasing priorities and in an alternating order so that two\nconsecutive filters can never fit in the same region because of their\nkey usage.\n\nIn Spectrum-2 and newer ASICs the firmware started to report that the\nmaximum number of ACLs in a group is more than 16, but the layout of the\nregister that configures ACL groups (PAGT) was not updated to account\nfor that. It is therefore possible to hit stack corruption [1] in the\nrare case where more than 16 ACLs in a group are required.\n\nFix by limiting the maximum ACL group size to the minimum between what\nthe firmware reports and the maximum ACLs that fit in the PAGT register.\n\nAdd a test case to make sure the machine does not crash when this\ncondition is hit.\n\n[1]\nKernel panic - not syncing: stack-protector: Kernel stack is corrupted in: mlxsw_sp_acl_tcam_group_update+0x116/0x120\n[...]\n dump_stack_lvl+0x36/0x50\n panic+0x305/0x330\n __stack_chk_fail+0x15/0x20\n mlxsw_sp_acl_tcam_group_update+0x116/0x120\n mlxsw_sp_acl_tcam_group_region_attach+0x69/0x110\n mlxsw_sp_acl_tcam_vchunk_get+0x492/0xa20\n mlxsw_sp_acl_tcam_ventry_add+0x25/0xe0\n mlxsw_sp_acl_rule_add+0x47/0x240\n mlxsw_sp_flower_replace+0x1a9/0x1d0\n tc_setup_cb_add+0xdc/0x1c0\n fl_hw_replace_filter+0x146/0x1f0\n fl_change+0xc17/0x1360\n tc_new_tfilter+0x472/0xb90\n rtnetlink_rcv_msg+0x313/0x3b0\n netlink_rcv_skb+0x58/0x100\n netlink_unicast+0x244/0x390\n netlink_sendmsg+0x1e4/0x440\n ____sys_sendmsg+0x164/0x260\n ___sys_sendmsg+0x9a/0xe0\n __sys_sendmsg+0x7a/0xc0\n do_syscall_64+0x40/0xe0\n entry_SYSCALL_64_after_hwframe+0x63/0x6b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26586",
"url": "https://www.suse.com/security/cve/CVE-2024-26586"
},
{
"category": "external",
"summary": "SUSE Bug 1220243 for CVE-2024-26586",
"url": "https://bugzilla.suse.com/1220243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-26586"
},
{
"cve": "CVE-2024-26589",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26589"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Reject variable offset alu on PTR_TO_FLOW_KEYS\n\nFor PTR_TO_FLOW_KEYS, check_flow_keys_access() only uses fixed off\nfor validation. However, variable offset ptr alu is not prohibited\nfor this ptr kind. So the variable offset is not checked.\n\nThe following prog is accepted:\n\n func#0 @0\n 0: R1=ctx() R10=fp0\n 0: (bf) r6 = r1 ; R1=ctx() R6_w=ctx()\n 1: (79) r7 = *(u64 *)(r6 +144) ; R6_w=ctx() R7_w=flow_keys()\n 2: (b7) r8 = 1024 ; R8_w=1024\n 3: (37) r8 /= 1 ; R8_w=scalar()\n 4: (57) r8 \u0026= 1024 ; R8_w=scalar(smin=smin32=0,\n smax=umax=smax32=umax32=1024,var_off=(0x0; 0x400))\n 5: (0f) r7 += r8\n mark_precise: frame0: last_idx 5 first_idx 0 subseq_idx -1\n mark_precise: frame0: regs=r8 stack= before 4: (57) r8 \u0026= 1024\n mark_precise: frame0: regs=r8 stack= before 3: (37) r8 /= 1\n mark_precise: frame0: regs=r8 stack= before 2: (b7) r8 = 1024\n 6: R7_w=flow_keys(smin=smin32=0,smax=umax=smax32=umax32=1024,var_off\n =(0x0; 0x400)) R8_w=scalar(smin=smin32=0,smax=umax=smax32=umax32=1024,\n var_off=(0x0; 0x400))\n 6: (79) r0 = *(u64 *)(r7 +0) ; R0_w=scalar()\n 7: (95) exit\n\nThis prog loads flow_keys to r7, and adds the variable offset r8\nto r7, and finally causes out-of-bounds access:\n\n BUG: unable to handle page fault for address: ffffc90014c80038\n [...]\n Call Trace:\n \u003cTASK\u003e\n bpf_dispatcher_nop_func include/linux/bpf.h:1231 [inline]\n __bpf_prog_run include/linux/filter.h:651 [inline]\n bpf_prog_run include/linux/filter.h:658 [inline]\n bpf_prog_run_pin_on_cpu include/linux/filter.h:675 [inline]\n bpf_flow_dissect+0x15f/0x350 net/core/flow_dissector.c:991\n bpf_prog_test_run_flow_dissector+0x39d/0x620 net/bpf/test_run.c:1359\n bpf_prog_test_run kernel/bpf/syscall.c:4107 [inline]\n __sys_bpf+0xf8f/0x4560 kernel/bpf/syscall.c:5475\n __do_sys_bpf kernel/bpf/syscall.c:5561 [inline]\n __se_sys_bpf kernel/bpf/syscall.c:5559 [inline]\n __x64_sys_bpf+0x73/0xb0 kernel/bpf/syscall.c:5559\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0x3f/0x110 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nFix this by rejecting ptr alu with variable offset on flow_keys.\nApplying the patch rejects the program with \"R7 pointer arithmetic\non flow_keys prohibited\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26589",
"url": "https://www.suse.com/security/cve/CVE-2024-26589"
},
{
"category": "external",
"summary": "SUSE Bug 1220255 for CVE-2024-26589",
"url": "https://bugzilla.suse.com/1220255"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-26589"
},
{
"cve": "CVE-2024-26591",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26591"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix re-attachment branch in bpf_tracing_prog_attach\n\nThe following case can cause a crash due to missing attach_btf:\n\n1) load rawtp program\n2) load fentry program with rawtp as target_fd\n3) create tracing link for fentry program with target_fd = 0\n4) repeat 3\n\nIn the end we have:\n\n- prog-\u003eaux-\u003edst_trampoline == NULL\n- tgt_prog == NULL (because we did not provide target_fd to link_create)\n- prog-\u003eaux-\u003eattach_btf == NULL (the program was loaded with attach_prog_fd=X)\n- the program was loaded for tgt_prog but we have no way to find out which one\n\n BUG: kernel NULL pointer dereference, address: 0000000000000058\n Call Trace:\n \u003cTASK\u003e\n ? __die+0x20/0x70\n ? page_fault_oops+0x15b/0x430\n ? fixup_exception+0x22/0x330\n ? exc_page_fault+0x6f/0x170\n ? asm_exc_page_fault+0x22/0x30\n ? bpf_tracing_prog_attach+0x279/0x560\n ? btf_obj_id+0x5/0x10\n bpf_tracing_prog_attach+0x439/0x560\n __sys_bpf+0x1cf4/0x2de0\n __x64_sys_bpf+0x1c/0x30\n do_syscall_64+0x41/0xf0\n entry_SYSCALL_64_after_hwframe+0x6e/0x76\n\nReturn -EINVAL in this situation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26591",
"url": "https://www.suse.com/security/cve/CVE-2024-26591"
},
{
"category": "external",
"summary": "SUSE Bug 1220254 for CVE-2024-26591",
"url": "https://bugzilla.suse.com/1220254"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-26591"
},
{
"cve": "CVE-2024-26593",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26593"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: i801: Fix block process call transactions\n\nAccording to the Intel datasheets, software must reset the block\nbuffer index twice for block process call transactions: once before\nwriting the outgoing data to the buffer, and once again before\nreading the incoming data from the buffer.\n\nThe driver is currently missing the second reset, causing the wrong\nportion of the block buffer to be read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26593",
"url": "https://www.suse.com/security/cve/CVE-2024-26593"
},
{
"category": "external",
"summary": "SUSE Bug 1220009 for CVE-2024-26593",
"url": "https://bugzilla.suse.com/1220009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-26593"
},
{
"cve": "CVE-2024-26595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26595"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path\n\nWhen calling mlxsw_sp_acl_tcam_region_destroy() from an error path after\nfailing to attach the region to an ACL group, we hit a NULL pointer\ndereference upon \u0027region-\u003egroup-\u003etcam\u0027 [1].\n\nFix by retrieving the \u0027tcam\u0027 pointer using mlxsw_sp_acl_to_tcam().\n\n[1]\nBUG: kernel NULL pointer dereference, address: 0000000000000000\n[...]\nRIP: 0010:mlxsw_sp_acl_tcam_region_destroy+0xa0/0xd0\n[...]\nCall Trace:\n mlxsw_sp_acl_tcam_vchunk_get+0x88b/0xa20\n mlxsw_sp_acl_tcam_ventry_add+0x25/0xe0\n mlxsw_sp_acl_rule_add+0x47/0x240\n mlxsw_sp_flower_replace+0x1a9/0x1d0\n tc_setup_cb_add+0xdc/0x1c0\n fl_hw_replace_filter+0x146/0x1f0\n fl_change+0xc17/0x1360\n tc_new_tfilter+0x472/0xb90\n rtnetlink_rcv_msg+0x313/0x3b0\n netlink_rcv_skb+0x58/0x100\n netlink_unicast+0x244/0x390\n netlink_sendmsg+0x1e4/0x440\n ____sys_sendmsg+0x164/0x260\n ___sys_sendmsg+0x9a/0xe0\n __sys_sendmsg+0x7a/0xc0\n do_syscall_64+0x40/0xe0\n entry_SYSCALL_64_after_hwframe+0x63/0x6b",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26595",
"url": "https://www.suse.com/security/cve/CVE-2024-26595"
},
{
"category": "external",
"summary": "SUSE Bug 1220344 for CVE-2024-26595",
"url": "https://bugzilla.suse.com/1220344"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-26595"
},
{
"cve": "CVE-2024-26598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26598"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache\n\nThere is a potential UAF scenario in the case of an LPI translation\ncache hit racing with an operation that invalidates the cache, such\nas a DISCARD ITS command. The root of the problem is that\nvgic_its_check_cache() does not elevate the refcount on the vgic_irq\nbefore dropping the lock that serializes refcount changes.\n\nHave vgic_its_check_cache() raise the refcount on the returned vgic_irq\nand add the corresponding decrement after queueing the interrupt.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26598",
"url": "https://www.suse.com/security/cve/CVE-2024-26598"
},
{
"category": "external",
"summary": "SUSE Bug 1220326 for CVE-2024-26598",
"url": "https://bugzilla.suse.com/1220326"
},
{
"category": "external",
"summary": "SUSE Bug 1221129 for CVE-2024-26598",
"url": "https://bugzilla.suse.com/1221129"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "important"
}
],
"title": "CVE-2024-26598"
},
{
"cve": "CVE-2024-26602",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26602"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/membarrier: reduce the ability to hammer on sys_membarrier\n\nOn some systems, sys_membarrier can be very expensive, causing overall\nslowdowns for everything. So put a lock on the path in order to\nserialize the accesses to prevent the ability for this to be called at\ntoo high of a frequency and saturate the machine.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26602",
"url": "https://www.suse.com/security/cve/CVE-2024-26602"
},
{
"category": "external",
"summary": "SUSE Bug 1220398 for CVE-2024-26602",
"url": "https://bugzilla.suse.com/1220398"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-26602"
},
{
"cve": "CVE-2024-26603",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26603"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/fpu: Stop relying on userspace for info to fault in xsave buffer\n\nBefore this change, the expected size of the user space buffer was\ntaken from fx_sw-\u003exstate_size. fx_sw-\u003exstate_size can be changed\nfrom user-space, so it is possible construct a sigreturn frame where:\n\n * fx_sw-\u003exstate_size is smaller than the size required by valid bits in\n fx_sw-\u003exfeatures.\n * user-space unmaps parts of the sigrame fpu buffer so that not all of\n the buffer required by xrstor is accessible.\n\nIn this case, xrstor tries to restore and accesses the unmapped area\nwhich results in a fault. But fault_in_readable succeeds because buf +\nfx_sw-\u003exstate_size is within the still mapped area, so it goes back and\ntries xrstor again. It will spin in this loop forever.\n\nInstead, fault in the maximum size which can be touched by XRSTOR (taken\nfrom fpstate-\u003euser_size).\n\n[ dhansen: tweak subject / changelog ]",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26603",
"url": "https://www.suse.com/security/cve/CVE-2024-26603"
},
{
"category": "external",
"summary": "SUSE Bug 1220335 for CVE-2024-26603",
"url": "https://bugzilla.suse.com/1220335"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-26603"
},
{
"cve": "CVE-2024-26607",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26607"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: sii902x: Fix probing race issue\n\nA null pointer dereference crash has been observed rarely on TI\nplatforms using sii9022 bridge:\n\n[ 53.271356] sii902x_get_edid+0x34/0x70 [sii902x]\n[ 53.276066] sii902x_bridge_get_edid+0x14/0x20 [sii902x]\n[ 53.281381] drm_bridge_get_edid+0x20/0x34 [drm]\n[ 53.286305] drm_bridge_connector_get_modes+0x8c/0xcc [drm_kms_helper]\n[ 53.292955] drm_helper_probe_single_connector_modes+0x190/0x538 [drm_kms_helper]\n[ 53.300510] drm_client_modeset_probe+0x1f0/0xbd4 [drm]\n[ 53.305958] __drm_fb_helper_initial_config_and_unlock+0x50/0x510 [drm_kms_helper]\n[ 53.313611] drm_fb_helper_initial_config+0x48/0x58 [drm_kms_helper]\n[ 53.320039] drm_fbdev_dma_client_hotplug+0x84/0xd4 [drm_dma_helper]\n[ 53.326401] drm_client_register+0x5c/0xa0 [drm]\n[ 53.331216] drm_fbdev_dma_setup+0xc8/0x13c [drm_dma_helper]\n[ 53.336881] tidss_probe+0x128/0x264 [tidss]\n[ 53.341174] platform_probe+0x68/0xc4\n[ 53.344841] really_probe+0x188/0x3c4\n[ 53.348501] __driver_probe_device+0x7c/0x16c\n[ 53.352854] driver_probe_device+0x3c/0x10c\n[ 53.357033] __device_attach_driver+0xbc/0x158\n[ 53.361472] bus_for_each_drv+0x88/0xe8\n[ 53.365303] __device_attach+0xa0/0x1b4\n[ 53.369135] device_initial_probe+0x14/0x20\n[ 53.373314] bus_probe_device+0xb0/0xb4\n[ 53.377145] deferred_probe_work_func+0xcc/0x124\n[ 53.381757] process_one_work+0x1f0/0x518\n[ 53.385770] worker_thread+0x1e8/0x3dc\n[ 53.389519] kthread+0x11c/0x120\n[ 53.392750] ret_from_fork+0x10/0x20\n\nThe issue here is as follows:\n\n- tidss probes, but is deferred as sii902x is still missing.\n- sii902x starts probing and enters sii902x_init().\n- sii902x calls drm_bridge_add(). Now the sii902x bridge is ready from\n DRM\u0027s perspective.\n- sii902x calls sii902x_audio_codec_init() and\n platform_device_register_data()\n- The registration of the audio platform device causes probing of the\n deferred devices.\n- tidss probes, which eventually causes sii902x_bridge_get_edid() to be\n called.\n- sii902x_bridge_get_edid() tries to use the i2c to read the edid.\n However, the sii902x driver has not set up the i2c part yet, leading\n to the crash.\n\nFix this by moving the drm_bridge_add() to the end of the\nsii902x_init(), which is also at the very end of sii902x_probe().",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26607",
"url": "https://www.suse.com/security/cve/CVE-2024-26607"
},
{
"category": "external",
"summary": "SUSE Bug 1220736 for CVE-2024-26607",
"url": "https://bugzilla.suse.com/1220736"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "moderate"
}
],
"title": "CVE-2024-26607"
},
{
"cve": "CVE-2024-26622",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-26622"
}
],
"notes": [
{
"category": "general",
"text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntomoyo: fix UAF write bug in tomoyo_write_control()\n\nSince tomoyo_write_control() updates head-\u003ewrite_buf when write()\nof long lines is requested, we need to fetch head-\u003ewrite_buf after\nhead-\u003eio_sem is held. Otherwise, concurrent write() requests can\ncause use-after-free-write and double-free problems.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-26622",
"url": "https://www.suse.com/security/cve/CVE-2024-26622"
},
{
"category": "external",
"summary": "SUSE Bug 1220825 for CVE-2024-26622",
"url": "https://bugzilla.suse.com/1220825"
},
{
"category": "external",
"summary": "SUSE Bug 1220828 for CVE-2024-26622",
"url": "https://bugzilla.suse.com/1220828"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2024-26622",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2024-26622",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.37.1.noarch",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.37.1.x86_64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.aarch64",
"openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.37.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-03-12T19:46:41Z",
"details": "important"
}
],
"title": "CVE-2024-26622"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…