csaf_suse - suse-su-2024:1644-1

suse-su-2024:1644-1

Vulnerability from csaf_suse

Published

2024-05-14 14:29

Modified

2024-05-14 14:29

Summary

Security update for the Linux Kernel

Notes

Title of the patch

Security update for the Linux Kernel

Description of the patch

The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-27389: Fixed pstore inode handling with d_invalidate() (bsc#1223705). - CVE-2024-27062: Fixed nouveau lock inside client object tree (bsc#1223834). - CVE-2024-27056: Fixed wifi/iwlwifi/mvm to ensure offloading TID queue exists (bsc#1223822). - CVE-2024-27046: Fixed nfp/flower handling acti_netdevs allocation failure (bsc#1223827). - CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824). - CVE-2024-27042: Fixed drm/amdgpu for potential out-of-bounds access in amdgpu_discovery_reg_base_init() (bsc#1223823). - CVE-2024-27041: Fixed drm/amd/display NULL checks for adev->dm.dc in amdgpu_dm_fini() (bsc#1223714). - CVE-2024-27039: Fixed clk/hisilicon/hi3559a an erroneous devm_kfree() (bsc#1223821). - CVE-2024-27038: Fixed clk_core_get NULL pointer dereference (bsc#1223816). - CVE-2024-27030: Fixed octeontx2-af to use separate handlers for interrupts (bsc#1223790). - CVE-2024-27014: Fixed net/mlx5e to prevent deadlock while disabling aRFS (bsc#1223735). - CVE-2024-27013: Fixed tun limit printing rate when illegal packet received by tun device (bsc#1223745). - CVE-2024-26993: Fixed fs/sysfs reference leak in sysfs_break_active_protection() (bsc#1223693). - CVE-2024-26982: Fixed Squashfs inode number check not to be an invalid value of zero (bsc#1223634). - CVE-2024-26970: Fixed clk/qcom/gcc-ipq6018 termination of frequency table arrays (bsc#1223644). - CVE-2024-26969: Fixed clk/qcom/gcc-ipq8074 termination of frequency table arrays (bsc#1223645). - CVE-2024-26966: Fixed clk/qcom/mmcc-apq8084 termination of frequency table arrays (bsc#1223646). - CVE-2024-26965: Fixed clk/qcom/mmcc-msm8974 termination of frequency table arrays (bsc#1223648). - CVE-2024-26960: Fixed mm/swap race between free_swap_and_cache() and swapoff() (bsc#1223655). - CVE-2024-26951: Fixed wireguard/netlink check for dangling peer via is_dead instead of empty list (bsc#1223660). - CVE-2024-26950: Fixed wireguard/netlink to access device through ctx instead of peer (bsc#1223661). - CVE-2024-26948: Fixed drm/amd/display by adding dc_state NULL check in dc_state_release (bsc#1223664). - CVE-2024-26939: Fixed drm/i915/vma UAF on destroy against retire race (bsc#1223679). - CVE-2024-26927: Fixed ASoC/SOF bounds checking to firmware data Smatch (bsc#1223525). - CVE-2024-26915: Fixed drm/amdgpu reset IH OVERFLOW_CLEAR bit (bsc#1223207). - CVE-2024-26901: Fixed do_sys_name_to_handle() to use kzalloc() to prevent kernel-infoleak (bsc#1223198). - CVE-2024-26898: Fixed aoe potential use-after-free problem in aoecmd_cfg_pkts (bsc#1223016). - CVE-2024-26896: Fixed wifi/wfx memory leak when starting AP (bsc#1223042). - CVE-2024-26893: Fixed firmware/arm_scmi for possible double free in SMC transport cleanup path (bsc#1223196). - CVE-2024-26885: Fixed bpf DEVMAP_HASH overflow check on 32-bit arches (bsc#1223190). - CVE-2024-26884: Fixed bpf hashtab overflow check on 32-bit arches (bsc#1223189). - CVE-2024-26883: Fixed bpf stackmap overflow check on 32-bit arches (bsc#1223035). - CVE-2024-26882: Fixed net/ip_tunnel to make sure to pull inner header in ip_tunnel_rcv() (bsc#1223034). - CVE-2024-26881: Fixed net/hns3 kernel crash when 1588 is received on HIP08 devices (bsc#1223041). - CVE-2024-26879: Fixed clk/meson by adding missing clocks to axg_clk_regmaps (bsc#1223066). - CVE-2024-26878: Fixed quota for potential NULL pointer dereference (bsc#1223060). - CVE-2024-26876: Fixed drm/bridge/adv7511 crash on irq during probe (bsc#1223119). - CVE-2024-26866: Fixed spi/spi-fsl-lpspi by removing redundant spi_controller_put call (bsc#1223024). - CVE-2024-26862: Fixed packet annotate data-races around ignore_outgoing (bsc#1223111). - CVE-2024-26861: Fixed wireguard/receive annotate data-race around receiving_counter.counter (bsc#1223076). - CVE-2024-26857: Fixed geneve to make sure to pull inner header in geneve_rx() (bsc#1223058). - CVE-2024-26856: Fixed use-after-free inside sparx5_del_mact_entry (bsc#1223052). - CVE-2024-26855: Fixed net/ice potential NULL pointer dereference in ice_bridge_setlink() (bsc#1223051). - CVE-2024-26853: Fixed igc returning frame twice in XDP_REDIRECT (bsc#1223061). - CVE-2024-26852: Fixed net/ipv6 to avoid possible UAF in ip6_route_mpath_notify() (bsc#1223057). - CVE-2024-26840: Fixed a memory leak in cachefiles_add_cache() (bsc#1222976). - CVE-2024-26836: Fixed platform/x86/think-lmi password opcode ordering for workstations (bsc#1222968). - CVE-2024-26830: Fixed i40e to not allow untrusted VF to remove administratively set MAC (bsc#1223012). - CVE-2024-26817: Fixed amdkfd to use calloc instead of kzalloc to avoid integer overflow (bsc#1222812). - CVE-2024-26816: Fixed relocations in .notes section when building with CONFIG_XEN_PV=y by ignoring them (bsc#1222624). - CVE-2024-26791: Fixed btrfs/dev-replace properly validate device names (bsc#1222793). - CVE-2024-26783: Fixed mm/vmscan bug when calling wakeup_kswapd() with a wrong zone index (bsc#1222615). - CVE-2024-26773: Fixed ext4 block allocation from corrupted group in ext4_mb_try_best_found() (bsc#1222618). - CVE-2024-26772: Fixed ext4 to avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() (bsc#1222613). - CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222726). - CVE-2024-26764: Fixed IOCB_AIO_RW check in fs/aio before the struct aio_kiocb conversion (bsc#1222721). - CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585). - CVE-2024-26700: Fixed drm/amd/display MST Null pointer dereference for RV (bsc#1222870). - CVE-2024-26687: Fixed xen/events close evtchn after mapping cleanup (bsc#1222435). - CVE-2024-26679: Fixed inet read sk->sk_family once in inet_recv_error() (bsc#1222385). - CVE-2024-26675: Fixed ppp_async to limit MRU to 64K (bsc#1222379). - CVE-2024-26673: Fixed netfilter/nft_ct layer 3 and 4 protocol sanitization (bsc#1222368). - CVE-2024-26671: Fixed blk-mq IO hang from sbitmap wakeup race (bsc#1222357). - CVE-2024-26656: Fixed drm/amdgpu use-after-free bug (bsc#1222307). - CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221299). - CVE-2024-26601: Fixed ext4 buddy bitmap corruption via fast commit replay (bsc#1220342). - CVE-2024-23850: Fixed double free of anonymous device after snapshot creation failure (bsc#1219126). - CVE-2024-23848: Fixed media/cec for possible use-after-free in cec_queue_msg_fh (bsc#1219104). - CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169). - CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170). - CVE-2024-2201: Fixed information leak in x86/BHI (bsc#1217339). - CVE-2024-0841: Fixed a null pointer dereference in the hugetlbfs_fill_super function in hugetlbfs (HugeTLB pages) functionality (bsc#1219264). - CVE-2024-0639: Fixed a denial-of-service vulnerability due to a deadlock found in sctp_auto_asconf_init in net/sctp/socket.c (bsc#1218917). - CVE-2023-6270: Fixed a use-after-free issue in aoecmd_cfg_pkts (bsc#1218562). - CVE-2023-52652: Fixed NTB for possible name leak in ntb_register_device() (bsc#1223686). - CVE-2023-52645: Fixed pmdomain/mediatek race conditions with genpd (bsc#1223033). - CVE-2023-52635: Fixed PM/devfreq to synchronize devfreq_monitor_[start/stop] (bsc#1222294). - CVE-2023-52620: Fixed netfilter/nf_tables to disallow timeout for anonymous sets never used from userspace (bsc#1221825). - CVE-2023-52616: Fixed unexpected pointer access in crypto/lib/mpi in mpi_ec_init (bsc#1221612). - CVE-2023-52614: Fixed PM/devfreq buffer overflow in trans_stat_show (bsc#1221617). - CVE-2023-52593: Fixed wifi/wfx possible NULL pointer dereference in wfx_set_mfp_ap() (bsc#1221042). - CVE-2023-52591: Fixed a possible reiserfs filesystem corruption via directory renaming (bsc#1221044). - CVE-2023-52590: Fixed a possible ocfs2 filesystem corruption via directory renaming (bsc#1221088). - CVE-2023-52589: Fixed media/rkisp1 IRQ disable race issue (bsc#1221084). - CVE-2023-52585: Fixed drm/amdgpu for possible NULL pointer dereference in amdgpu_ras_query_error_status_helper() (bsc#1221080). - CVE-2022-48662: Fixed a general protection fault (GPF) in i915_perf_open_ioctl (bsc#1223505). - CVE-2022-48659: Fixed mm/slub to return errno if kmalloc() fails (bsc#1223498). - CVE-2022-48658: Fixed mm/slub to avoid a problem in flush_cpu_slab()/__free_slab() task context (bsc#1223496). - CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223513). - CVE-2022-48642: Fixed netfilter/nf_tables percpu memory leak at nf_tables_addchain() (bsc#1223478). - CVE-2022-48640: Fixed bonding for possible NULL pointer dereference in bond_rr_gen_slave_id (bsc#1223499). - CVE-2022-48631: Fixed a bug in ext4, when parsing extents where eh_entries == 0 and eh_depth > 0 (bsc#1223475). - CVE-2021-47214: Fixed hugetlb/userfaultfd during restore reservation in hugetlb_mcopy_atomic_pte() (bsc#1222710). - CVE-2021-47211: Fixed a null pointer dereference on pointer cs_desc in usb-audio (bsc#1222869). - CVE-2021-47207: Fixed a null pointer dereference on pointer block in gus (bsc#1222790). - CVE-2021-47205: Unregistered clocks/resets when unbinding in sunxi-ng (bsc#1222888). - CVE-2021-47202: Fixed NULL pointer dereferences in of_thermal_ functions (bsc#1222878) - CVE-2021-47200: Fixed drm/prime for possible use-after-free in mmap within drm_gem_ttm_mmap() and drm_gem_ttm_mmap() (bsc#1222838). - CVE-2021-47195: Fixed use-after-free inside SPI via add_lock mutex (bsc#1222832). - CVE-2021-47185: Fixed a softlockup issue in flush_to_ldisc in tty tty_buffer (bsc#1222669). - CVE-2021-47184: Fixed NULL pointer dereference on VSI filter sync (bsc#1222666). The following non-security bugs were fixed: - ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter (stable-fixes). - ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC (stable-fixes). - ALSA: hda/realtek - Fix inactive headset mic jack (stable-fixes). - ALSA: hda/realtek: Add quirk for HP SnowWhite laptops (stable-fixes). - ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU (stable-fixes). - ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node() (git-fixes). - ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support (stable-fixes). - ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support (stable-fixes). - ALSA: scarlett2: Add correct product series name to messages (stable-fixes). - ALSA: scarlett2: Add support for Clarett 8Pre USB (stable-fixes). - ALSA: scarlett2: Default mixer driver to enabled (stable-fixes). - ALSA: scarlett2: Move USB IDs out from device_info struct (stable-fixes). - ASoC: meson: axg-card: make links nonatomic (git-fixes). - ASoC: meson: axg-tdm-interface: manage formatters in trigger (git-fixes). - ASoC: meson: cards: select SND_DYNAMIC_MINORS (git-fixes). - ASoC: soc-core.c: Skip dummy codec when adding platforms (stable-fixes). - ASoC: tegra: Fix DSPK 16-bit playback (git-fixes). - ASoC: ti: davinci-mcasp: Fix race condition during probe (git-fixes). - Bluetooth: Add new quirk for broken read key length on ATS2851 (git-fixes). - Bluetooth: Fix TOCTOU in HCI debugfs implementation (git-fixes). - Bluetooth: Fix memory leak in hci_req_sync_complete() (git-fixes). - Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old() (stable-fixes). - Bluetooth: L2CAP: Fix not validating setsockopt user input (git-fixes). - Bluetooth: RFCOMM: Fix not validating setsockopt user input (git-fixes). - Bluetooth: SCO: Fix not validating setsockopt user input (git-fixes). - Bluetooth: add quirk for broken address properties (git-fixes). - Bluetooth: btintel: Fix null ptr deref in btintel_read_version (stable-fixes). - Bluetooth: btintel: Fixe build regression (git-fixes). - Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853 (stable-fixes). - Bluetooth: hci_event: Fix sending HCI_OP_READ_ENC_KEY_SIZE (git-fixes). - Bluetooth: hci_event: set the conn encrypted before conn establishes (stable-fixes). - Bluetooth: hci_sock: Fix not validating setsockopt user input (git-fixes). - Bluetooth: qca: fix NULL-deref on non-serdev suspend (git-fixes). - Documentation: Add missing documentation for EXPORT_OP flags (stable-fixes). - HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized dev->devc (git-fixes). - HID: logitech-dj: allow mice to use all types of reports (git-fixes). - HID: uhid: Use READ_ONCE()/WRITE_ONCE() for ->running (stable-fixes). - Input: allocate keycode for Display refresh rate toggle (stable-fixes). - Input: synaptics-rmi4 - fail probing if memory allocation for 'phys' fails (stable-fixes). - NFC: trf7970a: disable all regulators on removal (git-fixes). - PCI: rpaphp: Error out on busy status from get-sensor-state (bsc#1223369 ltc#205888). - RDMA/cm: Print the old state when cm_destroy_id gets timeout (git-fixes). - Reapply 'drm/qxl: simplify qxl_fence_wait' (stable-fixes). - Revert 'ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default' (stable-fixes). - Revert 'drm/qxl: simplify qxl_fence_wait' (git-fixes). - Revert 'ice: Fix ice VF reset during iavf initialization (jsc#PED-376).' (bsc#1223275) - Revert 'usb: cdc-wdm: close race between read and workqueue' (git-fixes). - Revert 'usb: phy: generic: Get the vbus supply' (git-fixes). - USB: UAS: return ENODEV when submit urbs fail with device not attached (stable-fixes). - USB: core: Add hub_get() and hub_put() routines (git-fixes). - USB: core: Fix access violation during port device removal (git-fixes). - USB: core: Fix deadlock in port 'disable' sysfs attribute (git-fixes). - USB: serial: add device ID for VeriFone adapter (stable-fixes). - USB: serial: cp210x: add ID for MGP Instruments PDS100 (stable-fixes). - USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M (stable-fixes). - USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB (stable-fixes). - USB: serial: option: add Fibocom FM135-GL variants (stable-fixes). - USB: serial: option: add Lonsung U8300/U9300 product (stable-fixes). - USB: serial: option: add MeiG Smart SLM320 product (stable-fixes). - USB: serial: option: add Rolling RW101-GL and RW135-GL support (stable-fixes). - USB: serial: option: add Telit FN920C04 rmnet compositions (stable-fixes). - USB: serial: option: add support for Fibocom FM650/FG650 (stable-fixes). - USB: serial: option: support Quectel EM060K sub-models (stable-fixes). - nfsd: Fixed mount kerberized nfs4 share issue (git-fixes bsc#1223858). - s390: Fixed kernel backtrack (bsc#1141539 git-fixes). - nfsd: Fixed mount issue with KOTD (bsc#1223380 bsc#1217408 bsc#1223640). - s390: Fixed LPM of lpar failure with error HSCLA2CF in 19th loops (jsc#PED-542 git-fixes bsc#1213573 ltc#203238). - ahci: asm1064: asm1166: do not limit reported ports (git-fixes). - ahci: asm1064: correct count of reported ports (stable-fixes). - arm64: dts: imx8-ss-conn: fix usdhc wrong lpcg clock order (git-fixes) - arm64: dts: rockchip: Remove unsupported node from the Pinebook Pro (git-fixes) - arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 (git-fixes) - arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for (git-fixes) - arm64: dts: rockchip: enable internal pull-up on Q7_USB_ID for RK3399 (git-fixes) - arm64: dts: rockchip: fix rk3328 hdmi ports node (git-fixes) - arm64: dts: rockchip: fix rk3399 hdmi ports node (git-fixes) - arm64: hibernate: Fix level3 translation fault in swsusp_save() (git-fixes). - ax25: fix use-after-free bugs caused by ax25_ds_del_timer (git-fixes). - batman-adv: Avoid infinite loop trying to resize local TT (git-fixes). - clk: Get runtime PM before walking tree during disable_unused (git-fixes). - clk: Initialize struct clk_core kref earlier (stable-fixes). - clk: Mark 'all_lists' as const (stable-fixes). - clk: Print an info line before disabling unused clocks (stable-fixes). - clk: Remove prepare_lock hold assertion in __clk_release() (git-fixes). - clk: remove extra empty line (stable-fixes). - comedi: vmk80xx: fix incomplete endpoint checking (git-fixes). - dma: xilinx_dpdma: Fix locking (git-fixes). - dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (git-fixes). - dmaengine: owl: fix register access functions (git-fixes). - dmaengine: tegra186: Fix residual calculation (git-fixes). - docs: Document the FAN_FS_ERROR event (stable-fixes). - drm-print: add drm_dbg_driver to improve namespace symmetry (stable-fixes). - drm/amd/display: Do not recursively call manual trigger programming (stable-fixes). - drm/amd/display: Fix nanosec stat overflow (stable-fixes). - drm/amd/display: fix disable otg wa logic in DCN316 (stable-fixes). - drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11 (stable-fixes). - drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3 (stable-fixes). - drm/amdgpu: Fix leak when GPU memory allocation fails (stable-fixes). - drm/amdgpu: Reset dGPU if suspend got aborted (stable-fixes). - drm/amdgpu: always force full reset for SOC21 (stable-fixes). - drm/amdgpu: fix incorrect active rb bitmap for gfx11 (stable-fixes). - drm/amdgpu: fix incorrect number of active RBs for gfx11 (stable-fixes). - drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2 (git-fixes). - drm/amdgpu: validate the parameters of bo mapping operations more clearly (git-fixes). - drm/amdkfd: Reset GPU on queue preemption failure (stable-fixes). - drm/ast: Fix soft lockup (git-fixes). - drm/client: Fully protect modes[] with dev->mode_config.mutex (stable-fixes). - drm/i915/cdclk: Fix CDCLK programming order when pipes are active (git-fixes). - drm/i915/vrr: Disable VRR when using bigjoiner (stable-fixes). - drm/i915: Disable port sync when bigjoiner is used (stable-fixes). - drm/msm/dp: fix typo in dp_display_handle_port_status_changed() (git-fixes). - drm/nouveau/nvkm: add a replacement for nvkm_notify (bsc#1223834) - drm/panel: ili9341: Respect deferred probe (git-fixes). - drm/panel: ili9341: Use predefined error codes (git-fixes). - drm/panel: visionox-rm69299: do not unregister DSI device (git-fixes). - drm/vc4: do not check if plane->state->fb == state->fb (stable-fixes). - drm/vmwgfx: Enable DMA mappings with SEV (git-fixes). - drm/vmwgfx: Fix crtc's atomic check conditional (git-fixes). - drm/vmwgfx: Fix invalid reads in fence signaled events (git-fixes). - drm/vmwgfx: Sort primary plane formats by order of preference (git-fixes). - drm: nv04: Fix out of bounds access (git-fixes). - drm: panel-orientation-quirks: Add quirk for GPD Win Mini (stable-fixes). - drm: panel-orientation-quirks: Add quirk for Lenovo Legion Go (stable-fixes). - dump_stack: Do not get cpu_sync for panic CPU (bsc#1223574). - fbdev: fix incorrect address computation in deferred IO (git-fixes). - fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 (stable-fixes). - fbmon: prevent division by zero in fb_videomode_from_videomode() (stable-fixes). - fuse: do not unhash root (bsc#1223951). - fuse: fix root lookup with nonzero generation (bsc#1223950). - hwmon: (amc6821) add of_match table (stable-fixes). - i2c: pxa: hide unused icr_bits[] variable (git-fixes). - i2c: smbus: fix NULL function pointer dereference (git-fixes). - i40e: Fix VF MAC filter removal (git-fixes). - idma64: Do not try to serve interrupts when device is powered off (git-fixes). - iio: accel: mxc4005: Interrupt handling fixes (git-fixes). - iio:imu: adis16475: Fix sync mode setting (git-fixes). - init/main.c: Fix potential static_command_line memory overflow (git-fixes). - ipv6/addrconf: fix a potential refcount underflow for idev (git-fixes). - irqchip/gic-v3-its: Prevent double free on error (git-fixes). - kprobes: Fix possible use-after-free issue on kprobe registration (git-fixes). - livepatch: Fix missing newline character in klp_resolve_symbols() (bsc#1223539). - media: cec: core: remove length check of Timer Status (stable-fixes). - media: sta2x11: fix irq handler cast (stable-fixes). - mei: me: add arrow lake point H DID (stable-fixes). - mei: me: add arrow lake point S DID (stable-fixes). - mei: me: disable RPL-S on SPS and IGN firmwares (git-fixes). - mm/vmscan: make sure wakeup_kswapd with managed zone (bsc#1223473). - mmc: sdhci-msm: pervent access to suspended controller (git-fixes). - mtd: diskonchip: work around ubsan link failure (stable-fixes). - net: bridge: vlan: fix memory leak in __allowed_ingress (git-fixes). - net: fix a memleak when uncloning an skb dst and its metadata (git-fixes). - net: fix skb leak in __skb_tstamp_tx() (git-fixes). - net: ipv6: ensure we call ipv6_mc_down() at most once (git-fixes). - net: mld: fix reference count leak in mld_{query | report}_work() (git-fixes). - net: stream: purge sk_error_queue in sk_stream_kill_queues() (git-fixes). - net: usb: ax88179_178a: avoid writing the mac address before first reading (git-fixes). - net: usb: ax88179_178a: stop lying about skb->truesize (git-fixes). - net: vlan: fix underflow for the real_dev refcnt (git-fixes). - net: vmxnet3: Fix NULL pointer dereference in vmxnet3_rq_rx_complete() (bsc#1223360). - netfilter: br_netfilter: Drop dst references before setting (git-fixes). - netfilter: ipt_CLUSTERIP: fix refcount leak in clusterip_tg_check() (git-fixes). - netfilter: nft_ct: fix l3num expectations with inet pseudo family (git-fixes). - nfsd: use __fput_sync() to avoid delayed closing of files (bsc#1223380 bsc#1217408). - nilfs2: fix OOB in nilfs_set_de_type (git-fixes). - nilfs2: fix OOB in nilfs_set_de_type (git-fixes). - nouveau: fix function cast warning (git-fixes). - nouveau: fix instmem race condition around ptr stores (git-fixes). - phy: tegra: xusb: Add API to retrieve the port number of phy (stable-fixes). - pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs (stable-fixes). - platform/x86: intel-vbtn: Update tablet mode switch at end of probe (git-fixes). - platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet (stable-fixes). - powerpc/kasan: Do not instrument non-maskable or raw interrupts (bsc#1223191). - powerpc/rtas: define pr_fmt and convert printk call sites (bsc#1223369 ltc#205888). - powerpc/rtas: export rtas_error_rc() for reuse (bsc#1223369 ltc#205888). - powerpc: Avoid nmi_enter/nmi_exit in real mode interrupt (bsc#1221645 ltc#205739 bsc#1223191). - powerpc: Refactor verification of MSR_RI (bsc#1223191). - printk: Add this_cpu_in_panic() (bsc#1223574). - printk: Adjust mapping for 32bit seq macros (bsc#1223574). - printk: Avoid non-panic CPUs writing to ringbuffer (bsc#1223574). - printk: Disable passing console lock owner completely during panic() (bsc#1223574). - printk: Drop console_sem during panic (bsc#1223574). - printk: Rename abandon_console_lock_in_panic() to other_cpu_in_panic() (bsc#1223574). - printk: Use prb_first_seq() as base for 32bit seq macros (bsc#1223574). - printk: Wait for all reserved records with pr_flush() (bsc#1223574). - printk: nbcon: Relocate 32bit seq macros (bsc#1223574). - printk: ringbuffer: Clarify special lpos values (bsc#1223574). - printk: ringbuffer: Cleanup reader terminology (bsc#1223574). - printk: ringbuffer: Do not skip non-finalized records with prb_next_seq() (bsc#1223574). - printk: ringbuffer: Improve prb_next_seq() performance (bsc#1223574). - printk: ringbuffer: Skip non-finalized records in panic (bsc#1223574). - pstore/zone: Add a null pointer check to the psz_kmsg_read (stable-fixes). - ring-buffer: Only update pages_touched when a new page is touched (git-fixes). - ring-buffer: use READ_ONCE() to read cpu_buffer->commit_page in concurrent environment (git-fixes). - s390/cio: Ensure the copied buf is NUL terminated (git-fixes bsc#1223875). - s390/decompressor: fix misaligned symbol build error (git-fixes bsc#1223785). - s390/mm: Fix clearing storage keys for huge pages (git-fixes bsc#1223877). - s390/mm: Fix storage key clearing for guest huge pages (git-fixes bsc#1223878). - s390/qeth: Fix kernel panic after setting hsuid (git-fixes bsc#1223879). - s390/scm: fix virtual vs physical address confusion (git-fixes bsc#1223784). - s390/vdso: Add CFI for RA register to asm macro vdso_func (git-fixes bsc#1223876). - s390/vdso: drop '-fPIC' from LDFLAGS (git-fixes bsc#1223598). - s390/zcrypt: fix reference counting on zcrypt card objects (git-fixes bsc#1223595). - serial/pmac_zilog: Remove flawed mitigation for rx irq flood (git-fixes). - serial: core: Provide port lock wrappers (stable-fixes). - serial: core: fix kernel-doc for uart_port_unlock_irqrestore() (git-fixes). - serial: mxs-auart: add spinlock around changing cts state (git-fixes). - slimbus: qcom-ngd-ctrl: Add timeout for wait operation (git-fixes). - speakup: Avoid crash on very long word (git-fixes). - speakup: Fix 8bit characters from direct synth (git-fixes). - spi: hisi-kunpeng: Delete the dump interface of data registers in debugfs (git-fixes). - tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp (git-fixes). - thunderbolt: Avoid notify PM core about runtime PM resume (stable-fixes). - thunderbolt: Fix wake configurations after device unplug (stable-fixes). - tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string (git-fixes). - tracing: Show size of requested perf buffer (git-fixes). - usb: Disable USB3 LPM at shutdown (stable-fixes). - usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed device (git-fixes). - usb: dwc2: host: Fix dereference issue in DDMA completion flow (git-fixes). - usb: dwc3: core: Prevent phy suspend during init (Git-fixes). - usb: gadget: composite: fix OS descriptors w_value logic (git-fixes). - usb: gadget: f_fs: Fix a race condition when processing setup packets (git-fixes). - usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error (stable-fixes). - usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic (git-fixes). - usb: ohci: Prevent missed ohci interrupts (git-fixes). - usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined (stable-fixes). - usb: typec: tcpci: add generic tcpci fallback compatible (stable-fixes). - usb: typec: tcpm: Check for port partner validity before consuming it (git-fixes). - usb: typec: tcpm: unregister existing source caps before re-registration (bsc#1220569). - usb: typec: ucsi: Ack unsupported commands (stable-fixes). - usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset (stable-fixes). - usb: typec: ucsi: Fix connector check on init (git-fixes). - usb: udc: remove warning when queue disabled ep (stable-fixes). - virtio: treat alloc_dax() -EOPNOTSUPP failure as non-fatal (bsc#1223949). - wifi: ath9k: fix LNA selection in ath_ant_try_scan() (stable-fixes). - wifi: iwlwifi: mvm: remove old PASN station when adding a new one (git-fixes). - wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd (git-fixes). - wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes (stable-fixes). - wifi: nl80211: do not free NULL coalescing rule (git-fixes). - x86/bugs: Cache the value of MSR_IA32_ARCH_CAPABILITIES (git-fixes). - x86/bugs: Fix BHI documentation (git-fixes). - x86/bugs: Fix BHI handling of RRSBA (git-fixes). - x86/bugs: Fix BHI retpoline check (git-fixes). - x86/bugs: Fix return type of spectre_bhi_state() (git-fixes). - x86/bugs: Rename various 'ia32_cap' variables to 'x86_arch_cap_msr' (git-fixes). - x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ (git-fixes). - x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type (jsc#PED-7167 git-fixes). - x86/sev: Skip ROM range scans and validation for SEV-SNP guests (jsc#PED-7167 git-fixes). - xfrm6: fix inet6_dev refcount underflow problem (git-fixes).

Patchnames

SUSE-2024-1644,SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1644,openSUSE-SLE-15.5-2024-1644

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\nThe SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2024-27389: Fixed pstore inode handling with d_invalidate() (bsc#1223705).\n- CVE-2024-27062: Fixed nouveau lock inside client object tree (bsc#1223834).\n- CVE-2024-27056: Fixed wifi/iwlwifi/mvm to ensure offloading TID queue exists (bsc#1223822).\n- CVE-2024-27046: Fixed nfp/flower handling acti_netdevs allocation failure (bsc#1223827).\n- CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824).\n- CVE-2024-27042: Fixed drm/amdgpu for potential out-of-bounds access in amdgpu_discovery_reg_base_init() (bsc#1223823).\n- CVE-2024-27041: Fixed drm/amd/display NULL checks for adev-\u003edm.dc in amdgpu_dm_fini() (bsc#1223714).\n- CVE-2024-27039: Fixed clk/hisilicon/hi3559a an erroneous devm_kfree() (bsc#1223821).\n- CVE-2024-27038: Fixed clk_core_get NULL pointer dereference (bsc#1223816).\n- CVE-2024-27030: Fixed octeontx2-af to use separate handlers for interrupts (bsc#1223790).\n- CVE-2024-27014: Fixed net/mlx5e to prevent deadlock while disabling aRFS (bsc#1223735).\n- CVE-2024-27013: Fixed tun limit printing rate when illegal packet received by tun device (bsc#1223745).\n- CVE-2024-26993: Fixed fs/sysfs reference leak in sysfs_break_active_protection() (bsc#1223693).\n- CVE-2024-26982: Fixed Squashfs inode number check not to be an invalid value of zero (bsc#1223634).\n- CVE-2024-26970: Fixed clk/qcom/gcc-ipq6018 termination of frequency table arrays (bsc#1223644).\n- CVE-2024-26969: Fixed clk/qcom/gcc-ipq8074 termination of frequency table arrays (bsc#1223645).\n- CVE-2024-26966: Fixed clk/qcom/mmcc-apq8084 termination of frequency table arrays (bsc#1223646).\n- CVE-2024-26965: Fixed clk/qcom/mmcc-msm8974 termination of frequency table arrays (bsc#1223648).\n- CVE-2024-26960: Fixed mm/swap race between free_swap_and_cache() and swapoff() (bsc#1223655).\n- CVE-2024-26951: Fixed wireguard/netlink check for dangling peer via is_dead instead of empty list (bsc#1223660).\n- CVE-2024-26950: Fixed wireguard/netlink to access device through ctx instead of peer (bsc#1223661).\n- CVE-2024-26948: Fixed drm/amd/display by adding dc_state NULL check in dc_state_release (bsc#1223664).\n- CVE-2024-26939: Fixed drm/i915/vma UAF on destroy against retire race (bsc#1223679).\n- CVE-2024-26927: Fixed ASoC/SOF bounds checking to firmware data Smatch (bsc#1223525).\n- CVE-2024-26915: Fixed drm/amdgpu reset IH OVERFLOW_CLEAR bit (bsc#1223207).\n- CVE-2024-26901: Fixed do_sys_name_to_handle() to use kzalloc() to prevent kernel-infoleak (bsc#1223198).\n- CVE-2024-26898: Fixed aoe potential use-after-free problem in aoecmd_cfg_pkts (bsc#1223016).\n- CVE-2024-26896: Fixed wifi/wfx memory leak when starting AP (bsc#1223042).\n- CVE-2024-26893: Fixed firmware/arm_scmi for possible double free in SMC transport cleanup path (bsc#1223196).\n- CVE-2024-26885: Fixed bpf DEVMAP_HASH overflow check on 32-bit arches (bsc#1223190).\n- CVE-2024-26884: Fixed bpf hashtab overflow check on 32-bit arches (bsc#1223189).\n- CVE-2024-26883: Fixed bpf stackmap overflow check on 32-bit arches (bsc#1223035).\n- CVE-2024-26882: Fixed net/ip_tunnel to make sure to pull inner header in ip_tunnel_rcv() (bsc#1223034).\n- CVE-2024-26881: Fixed net/hns3 kernel crash when 1588 is received on HIP08 devices (bsc#1223041).\n- CVE-2024-26879: Fixed clk/meson by adding missing clocks to axg_clk_regmaps (bsc#1223066).\n- CVE-2024-26878: Fixed quota for potential NULL pointer dereference (bsc#1223060).\n- CVE-2024-26876: Fixed drm/bridge/adv7511 crash on irq during probe (bsc#1223119).\n- CVE-2024-26866: Fixed spi/spi-fsl-lpspi by removing redundant spi_controller_put call (bsc#1223024).\n- CVE-2024-26862: Fixed packet annotate data-races around ignore_outgoing (bsc#1223111).\n- CVE-2024-26861: Fixed wireguard/receive annotate data-race around receiving_counter.counter (bsc#1223076).\n- CVE-2024-26857: Fixed geneve to make sure to pull inner header in geneve_rx() (bsc#1223058).\n- CVE-2024-26856: Fixed use-after-free inside sparx5_del_mact_entry (bsc#1223052).\n- CVE-2024-26855: Fixed net/ice potential NULL pointer dereference in ice_bridge_setlink() (bsc#1223051).\n- CVE-2024-26853: Fixed igc returning frame twice in XDP_REDIRECT (bsc#1223061).\n- CVE-2024-26852: Fixed net/ipv6 to avoid possible UAF in ip6_route_mpath_notify() (bsc#1223057).\n- CVE-2024-26840: Fixed a memory leak in cachefiles_add_cache() (bsc#1222976).\n- CVE-2024-26836: Fixed platform/x86/think-lmi password opcode ordering for workstations (bsc#1222968).\n- CVE-2024-26830: Fixed i40e to not allow untrusted VF to remove administratively set MAC (bsc#1223012).\n- CVE-2024-26817: Fixed amdkfd to use calloc instead of kzalloc to avoid integer overflow (bsc#1222812).\n- CVE-2024-26816: Fixed relocations in .notes section when building with CONFIG_XEN_PV=y by ignoring them (bsc#1222624).\n- CVE-2024-26791: Fixed btrfs/dev-replace properly validate device names (bsc#1222793).\n- CVE-2024-26783: Fixed mm/vmscan bug when calling wakeup_kswapd() with a wrong zone index (bsc#1222615).\n- CVE-2024-26773: Fixed ext4 block allocation from corrupted group in ext4_mb_try_best_found() (bsc#1222618).\n- CVE-2024-26772: Fixed ext4 to avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() (bsc#1222613).\n- CVE-2024-26766: Fixed SDMA off-by-one error in _pad_sdma_tx_descs() (bsc#1222726).\n- CVE-2024-26764: Fixed IOCB_AIO_RW check in fs/aio before the struct aio_kiocb conversion (bsc#1222721).\n- CVE-2024-26733: Fixed an overflow in arp_req_get() in arp (bsc#1222585).\n- CVE-2024-26700: Fixed drm/amd/display MST Null pointer dereference  for RV (bsc#1222870).\n- CVE-2024-26687: Fixed xen/events close evtchn after mapping cleanup (bsc#1222435).\n- CVE-2024-26679: Fixed inet read sk-\u003esk_family once in inet_recv_error() (bsc#1222385).\n- CVE-2024-26675: Fixed ppp_async to limit MRU to 64K (bsc#1222379).\n- CVE-2024-26673: Fixed netfilter/nft_ct layer 3 and 4 protocol sanitization (bsc#1222368).\n- CVE-2024-26671: Fixed blk-mq IO hang from sbitmap wakeup race (bsc#1222357).\n- CVE-2024-26656: Fixed drm/amdgpu use-after-free bug (bsc#1222307).\n- CVE-2024-26610: Fixed memory corruption in wifi/iwlwifi (bsc#1221299).\n- CVE-2024-26601: Fixed ext4 buddy bitmap corruption via fast commit replay (bsc#1220342).\n- CVE-2024-23850: Fixed double free of anonymous device after snapshot  creation failure (bsc#1219126).\n- CVE-2024-23848: Fixed media/cec for possible use-after-free in cec_queue_msg_fh (bsc#1219104).\n- CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169).\n- CVE-2024-22099: Fixed a null-pointer-dereference in rfcomm_check_security (bsc#1219170).\n- CVE-2024-2201: Fixed information leak in x86/BHI (bsc#1217339).\n- CVE-2024-0841: Fixed a null pointer dereference in the hugetlbfs_fill_super function in hugetlbfs (HugeTLB pages) functionality (bsc#1219264).\n- CVE-2024-0639: Fixed a denial-of-service vulnerability due to a deadlock found in sctp_auto_asconf_init in net/sctp/socket.c (bsc#1218917).\n- CVE-2023-6270: Fixed a use-after-free issue in aoecmd_cfg_pkts (bsc#1218562).\n- CVE-2023-52652: Fixed NTB for possible name leak in ntb_register_device() (bsc#1223686).\n- CVE-2023-52645: Fixed pmdomain/mediatek race conditions with genpd (bsc#1223033).\n- CVE-2023-52635: Fixed PM/devfreq to synchronize devfreq_monitor_[start/stop] (bsc#1222294).\n- CVE-2023-52620: Fixed netfilter/nf_tables to disallow timeout for anonymous sets never used from userspace (bsc#1221825).\n- CVE-2023-52616: Fixed unexpected pointer access in crypto/lib/mpi in mpi_ec_init (bsc#1221612).\n- CVE-2023-52614: Fixed PM/devfreq buffer overflow in trans_stat_show (bsc#1221617).\n- CVE-2023-52593: Fixed wifi/wfx possible NULL pointer dereference in wfx_set_mfp_ap() (bsc#1221042).\n- CVE-2023-52591: Fixed a possible reiserfs filesystem corruption via directory renaming (bsc#1221044).\n- CVE-2023-52590: Fixed a possible ocfs2 filesystem corruption via directory renaming (bsc#1221088).\n- CVE-2023-52589: Fixed media/rkisp1 IRQ disable race issue (bsc#1221084).\n- CVE-2023-52585: Fixed drm/amdgpu for possible NULL pointer dereference in amdgpu_ras_query_error_status_helper() (bsc#1221080).\n- CVE-2022-48662: Fixed a general protection fault (GPF) in i915_perf_open_ioctl (bsc#1223505).\n- CVE-2022-48659: Fixed mm/slub to return errno if kmalloc() fails (bsc#1223498).\n- CVE-2022-48658: Fixed mm/slub to avoid a problem in flush_cpu_slab()/__free_slab() task context (bsc#1223496).\n- CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb-\u003emac_header (bsc#1223513).\n- CVE-2022-48642: Fixed netfilter/nf_tables percpu memory leak at nf_tables_addchain() (bsc#1223478).\n- CVE-2022-48640: Fixed bonding for possible NULL pointer dereference in bond_rr_gen_slave_id (bsc#1223499).\n- CVE-2022-48631: Fixed a bug in ext4, when parsing extents where eh_entries == 0 and eh_depth \u003e 0 (bsc#1223475).\n- CVE-2021-47214: Fixed hugetlb/userfaultfd during restore reservation in hugetlb_mcopy_atomic_pte() (bsc#1222710).\n- CVE-2021-47211: Fixed a null pointer dereference on pointer cs_desc in usb-audio (bsc#1222869).\n- CVE-2021-47207: Fixed a null pointer dereference on pointer block in gus (bsc#1222790).\n- CVE-2021-47205: Unregistered clocks/resets when unbinding in sunxi-ng (bsc#1222888).\n- CVE-2021-47202: Fixed NULL pointer dereferences in of_thermal_ functions (bsc#1222878)\n- CVE-2021-47200: Fixed drm/prime for possible use-after-free in mmap within drm_gem_ttm_mmap() and drm_gem_ttm_mmap() (bsc#1222838).\n- CVE-2021-47195: Fixed use-after-free inside SPI via add_lock mutex (bsc#1222832).\n- CVE-2021-47185: Fixed a softlockup issue in flush_to_ldisc in tty tty_buffer (bsc#1222669).\n- CVE-2021-47184: Fixed NULL pointer dereference on VSI filter sync (bsc#1222666).\n\nThe following non-security bugs were fixed:\n\n- ALSA: firewire-lib: handle quirk to calculate payload quadlets as data block counter (stable-fixes).\n- ALSA: hda/realtek - Enable audio jacks of Haier Boyue G42 with ALC269VC (stable-fixes).\n- ALSA: hda/realtek - Fix inactive headset mic jack (stable-fixes).\n- ALSA: hda/realtek: Add quirk for HP SnowWhite laptops (stable-fixes).\n- ALSA: hda/realtek: Fix mute led of HP Laptop 15-da3001TU (stable-fixes).\n- ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node() (git-fixes).\n- ALSA: scarlett2: Add Focusrite Clarett 2Pre and 4Pre USB support (stable-fixes).\n- ALSA: scarlett2: Add Focusrite Clarett+ 2Pre and 4Pre support (stable-fixes).\n- ALSA: scarlett2: Add correct product series name to messages (stable-fixes).\n- ALSA: scarlett2: Add support for Clarett 8Pre USB (stable-fixes).\n- ALSA: scarlett2: Default mixer driver to enabled (stable-fixes).\n- ALSA: scarlett2: Move USB IDs out from device_info struct (stable-fixes).\n- ASoC: meson: axg-card: make links nonatomic (git-fixes).\n- ASoC: meson: axg-tdm-interface: manage formatters in trigger (git-fixes).\n- ASoC: meson: cards: select SND_DYNAMIC_MINORS (git-fixes).\n- ASoC: soc-core.c: Skip dummy codec when adding platforms (stable-fixes).\n- ASoC: tegra: Fix DSPK 16-bit playback (git-fixes).\n- ASoC: ti: davinci-mcasp: Fix race condition during probe (git-fixes).\n- Bluetooth: Add new quirk for broken read key length on ATS2851 (git-fixes).\n- Bluetooth: Fix TOCTOU in HCI debugfs implementation (git-fixes).\n- Bluetooth: Fix memory leak in hci_req_sync_complete() (git-fixes).\n- Bluetooth: Fix type of len in {l2cap,sco}_sock_getsockopt_old() (stable-fixes).\n- Bluetooth: L2CAP: Fix not validating setsockopt user input (git-fixes).\n- Bluetooth: RFCOMM: Fix not validating setsockopt user input (git-fixes).\n- Bluetooth: SCO: Fix not validating setsockopt user input (git-fixes).\n- Bluetooth: add quirk for broken address properties (git-fixes).\n- Bluetooth: btintel: Fix null ptr deref in btintel_read_version (stable-fixes).\n- Bluetooth: btintel: Fixe build regression (git-fixes).\n- Bluetooth: btusb: Add Realtek RTL8852BE support ID 0x0bda:0x4853 (stable-fixes).\n- Bluetooth: hci_event: Fix sending HCI_OP_READ_ENC_KEY_SIZE (git-fixes).\n- Bluetooth: hci_event: set the conn encrypted before conn establishes (stable-fixes).\n- Bluetooth: hci_sock: Fix not validating setsockopt user input (git-fixes).\n- Bluetooth: qca: fix NULL-deref on non-serdev suspend (git-fixes).\n- Documentation: Add missing documentation for EXPORT_OP flags (stable-fixes).\n- HID: intel-ish-hid: ipc: Fix dev_err usage with uninitialized dev-\u003edevc (git-fixes).\n- HID: logitech-dj: allow mice to use all types of reports (git-fixes).\n- HID: uhid: Use READ_ONCE()/WRITE_ONCE() for -\u003erunning (stable-fixes).\n- Input: allocate keycode for Display refresh rate toggle (stable-fixes).\n- Input: synaptics-rmi4 - fail probing if memory allocation for \u0027phys\u0027 fails (stable-fixes).\n- NFC: trf7970a: disable all regulators on removal (git-fixes).\n- PCI: rpaphp: Error out on busy status from get-sensor-state (bsc#1223369 ltc#205888).\n- RDMA/cm: Print the old state when cm_destroy_id gets timeout (git-fixes).\n- Reapply \u0027drm/qxl: simplify qxl_fence_wait\u0027 (stable-fixes).\n- Revert \u0027ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default\u0027 (stable-fixes).\n- Revert \u0027drm/qxl: simplify qxl_fence_wait\u0027 (git-fixes).\n- Revert \u0027ice: Fix ice VF reset during iavf initialization (jsc#PED-376).\u0027 (bsc#1223275)\n- Revert \u0027usb: cdc-wdm: close race between read and workqueue\u0027 (git-fixes).\n- Revert \u0027usb: phy: generic: Get the vbus supply\u0027 (git-fixes).\n- USB: UAS: return ENODEV when submit urbs fail with device not attached (stable-fixes).\n- USB: core: Add hub_get() and hub_put() routines (git-fixes).\n- USB: core: Fix access violation during port device removal (git-fixes).\n- USB: core: Fix deadlock in port \u0027disable\u0027 sysfs attribute (git-fixes).\n- USB: serial: add device ID for VeriFone adapter (stable-fixes).\n- USB: serial: cp210x: add ID for MGP Instruments PDS100 (stable-fixes).\n- USB: serial: cp210x: add pid/vid for TDK NC0110013M and MM0110113M (stable-fixes).\n- USB: serial: ftdi_sio: add support for GMC Z216C Adapter IR-USB (stable-fixes).\n- USB: serial: option: add Fibocom FM135-GL variants (stable-fixes).\n- USB: serial: option: add Lonsung U8300/U9300 product (stable-fixes).\n- USB: serial: option: add MeiG Smart SLM320 product (stable-fixes).\n- USB: serial: option: add Rolling RW101-GL and RW135-GL support (stable-fixes).\n- USB: serial: option: add Telit FN920C04 rmnet compositions (stable-fixes).\n- USB: serial: option: add support for Fibocom FM650/FG650 (stable-fixes).\n- USB: serial: option: support Quectel EM060K sub-models (stable-fixes).\n- nfsd: Fixed mount kerberized nfs4 share issue (git-fixes bsc#1223858).\n- s390: Fixed kernel backtrack (bsc#1141539 git-fixes).\n- nfsd: Fixed mount issue with KOTD (bsc#1223380 bsc#1217408 bsc#1223640).\n- s390: Fixed LPM of lpar failure with error HSCLA2CF in 19th loops (jsc#PED-542 git-fixes bsc#1213573 ltc#203238).\n- ahci: asm1064: asm1166: do not limit reported ports (git-fixes).\n- ahci: asm1064: correct count of reported ports (stable-fixes).\n- arm64: dts: imx8-ss-conn: fix usdhc wrong lpcg clock order (git-fixes)\n- arm64: dts: rockchip: Remove unsupported node from the Pinebook Pro (git-fixes)\n- arm64: dts: rockchip: enable internal pull-up for Q7_THRM# on RK3399 (git-fixes)\n- arm64: dts: rockchip: enable internal pull-up on PCIE_WAKE# for (git-fixes)\n- arm64: dts: rockchip: enable internal pull-up on Q7_USB_ID for RK3399 (git-fixes)\n- arm64: dts: rockchip: fix rk3328 hdmi ports node (git-fixes)\n- arm64: dts: rockchip: fix rk3399 hdmi ports node (git-fixes)\n- arm64: hibernate: Fix level3 translation fault in swsusp_save() (git-fixes).\n- ax25: fix use-after-free bugs caused by ax25_ds_del_timer (git-fixes).\n- batman-adv: Avoid infinite loop trying to resize local TT (git-fixes).\n- clk: Get runtime PM before walking tree during disable_unused (git-fixes).\n- clk: Initialize struct clk_core kref earlier (stable-fixes).\n- clk: Mark \u0027all_lists\u0027 as const (stable-fixes).\n- clk: Print an info line before disabling unused clocks (stable-fixes).\n- clk: Remove prepare_lock hold assertion in __clk_release() (git-fixes).\n- clk: remove extra empty line (stable-fixes).\n- comedi: vmk80xx: fix incomplete endpoint checking (git-fixes).\n- dma: xilinx_dpdma: Fix locking (git-fixes).\n- dmaengine: idxd: Fix oops during rmmod on single-CPU platforms (git-fixes).\n- dmaengine: owl: fix register access functions (git-fixes).\n- dmaengine: tegra186: Fix residual calculation (git-fixes).\n- docs: Document the FAN_FS_ERROR event (stable-fixes).\n- drm-print: add drm_dbg_driver to improve namespace symmetry (stable-fixes).\n- drm/amd/display: Do not recursively call manual trigger programming (stable-fixes).\n- drm/amd/display: Fix nanosec stat overflow (stable-fixes).\n- drm/amd/display: fix disable otg wa logic in DCN316 (stable-fixes).\n- drm/amd/pm: fixes a random hang in S4 for SMU v13.0.4/11 (stable-fixes).\n- drm/amdgpu/sdma5.2: use legacy HDP flush for SDMA2/3 (stable-fixes).\n- drm/amdgpu: Fix leak when GPU memory allocation fails (stable-fixes).\n- drm/amdgpu: Reset dGPU if suspend got aborted (stable-fixes).\n- drm/amdgpu: always force full reset for SOC21 (stable-fixes).\n- drm/amdgpu: fix incorrect active rb bitmap for gfx11 (stable-fixes).\n- drm/amdgpu: fix incorrect number of active RBs for gfx11 (stable-fixes).\n- drm/amdgpu: once more fix the call oder in amdgpu_ttm_move() v2 (git-fixes).\n- drm/amdgpu: validate the parameters of bo mapping operations more clearly (git-fixes).\n- drm/amdkfd: Reset GPU on queue preemption failure (stable-fixes).\n- drm/ast: Fix soft lockup (git-fixes).\n- drm/client: Fully protect modes[] with dev-\u003emode_config.mutex (stable-fixes).\n- drm/i915/cdclk: Fix CDCLK programming order when pipes are active (git-fixes).\n- drm/i915/vrr: Disable VRR when using bigjoiner (stable-fixes).\n- drm/i915: Disable port sync when bigjoiner is used (stable-fixes).\n- drm/msm/dp: fix typo in dp_display_handle_port_status_changed() (git-fixes).\n- drm/nouveau/nvkm: add a replacement for nvkm_notify (bsc#1223834)\n- drm/panel: ili9341: Respect deferred probe (git-fixes).\n- drm/panel: ili9341: Use predefined error codes (git-fixes).\n- drm/panel: visionox-rm69299: do not unregister DSI device (git-fixes).\n- drm/vc4: do not check if plane-\u003estate-\u003efb == state-\u003efb (stable-fixes).\n- drm/vmwgfx: Enable DMA mappings with SEV (git-fixes).\n- drm/vmwgfx: Fix crtc\u0027s atomic check conditional (git-fixes).\n- drm/vmwgfx: Fix invalid reads in fence signaled events (git-fixes).\n- drm/vmwgfx: Sort primary plane formats by order of preference (git-fixes).\n- drm: nv04: Fix out of bounds access (git-fixes).\n- drm: panel-orientation-quirks: Add quirk for GPD Win Mini (stable-fixes).\n- drm: panel-orientation-quirks: Add quirk for Lenovo Legion Go (stable-fixes).\n- dump_stack: Do not get cpu_sync for panic CPU (bsc#1223574).\n- fbdev: fix incorrect address computation in deferred IO (git-fixes).\n- fbdev: viafb: fix typo in hw_bitblt_1 and hw_bitblt_2 (stable-fixes).\n- fbmon: prevent division by zero in fb_videomode_from_videomode() (stable-fixes).\n- fuse: do not unhash root (bsc#1223951).\n- fuse: fix root lookup with nonzero generation (bsc#1223950).\n- hwmon: (amc6821) add of_match table (stable-fixes).\n- i2c: pxa: hide unused icr_bits[] variable (git-fixes).\n- i2c: smbus: fix NULL function pointer dereference (git-fixes).\n- i40e: Fix VF MAC filter removal (git-fixes).\n- idma64: Do not try to serve interrupts when device is powered off (git-fixes).\n- iio: accel: mxc4005: Interrupt handling fixes (git-fixes).\n- iio:imu: adis16475: Fix sync mode setting (git-fixes).\n- init/main.c: Fix potential static_command_line memory overflow (git-fixes).\n- ipv6/addrconf: fix a potential refcount underflow for idev (git-fixes).\n- irqchip/gic-v3-its: Prevent double free on error (git-fixes).\n- kprobes: Fix possible use-after-free issue on kprobe registration (git-fixes).\n- livepatch: Fix missing newline character in klp_resolve_symbols() (bsc#1223539).\n- media: cec: core: remove length check of Timer Status (stable-fixes).\n- media: sta2x11: fix irq handler cast (stable-fixes).\n- mei: me: add arrow lake point H DID (stable-fixes).\n- mei: me: add arrow lake point S DID (stable-fixes).\n- mei: me: disable RPL-S on SPS and IGN firmwares (git-fixes).\n- mm/vmscan: make sure wakeup_kswapd with managed zone (bsc#1223473).\n- mmc: sdhci-msm: pervent access to suspended controller (git-fixes).\n- mtd: diskonchip: work around ubsan link failure (stable-fixes).\n- net: bridge: vlan: fix memory leak in __allowed_ingress (git-fixes).\n- net: fix a memleak when uncloning an skb dst and its metadata (git-fixes).\n- net: fix skb leak in __skb_tstamp_tx() (git-fixes).\n- net: ipv6: ensure we call ipv6_mc_down() at most once (git-fixes).\n- net: mld: fix reference count leak in mld_{query | report}_work() (git-fixes).\n- net: stream: purge sk_error_queue in sk_stream_kill_queues() (git-fixes).\n- net: usb: ax88179_178a: avoid writing the mac address before first reading (git-fixes).\n- net: usb: ax88179_178a: stop lying about skb-\u003etruesize (git-fixes).\n- net: vlan: fix underflow for the real_dev refcnt (git-fixes).\n- net: vmxnet3: Fix NULL pointer dereference in vmxnet3_rq_rx_complete() (bsc#1223360).\n- netfilter: br_netfilter: Drop dst references before setting (git-fixes).\n- netfilter: ipt_CLUSTERIP: fix refcount leak in clusterip_tg_check() (git-fixes).\n- netfilter: nft_ct: fix l3num expectations with inet pseudo family (git-fixes).\n- nfsd: use __fput_sync() to avoid delayed closing of files (bsc#1223380 bsc#1217408).\n- nilfs2: fix OOB in nilfs_set_de_type (git-fixes).\n- nilfs2: fix OOB in nilfs_set_de_type (git-fixes).\n- nouveau: fix function cast warning (git-fixes).\n- nouveau: fix instmem race condition around ptr stores (git-fixes).\n- phy: tegra: xusb: Add API to retrieve the port number of phy (stable-fixes).\n- pinctrl: renesas: checker: Limit cfg reg enum checks to provided IDs (stable-fixes).\n- platform/x86: intel-vbtn: Update tablet mode switch at end of probe (git-fixes).\n- platform/x86: touchscreen_dmi: Add an extra entry for a variant of the Chuwi Vi8 tablet (stable-fixes).\n- powerpc/kasan: Do not instrument non-maskable or raw interrupts (bsc#1223191).\n- powerpc/rtas: define pr_fmt and convert printk call sites (bsc#1223369 ltc#205888).\n- powerpc/rtas: export rtas_error_rc() for reuse (bsc#1223369 ltc#205888).\n- powerpc: Avoid nmi_enter/nmi_exit in real mode interrupt (bsc#1221645 ltc#205739 bsc#1223191).\n- powerpc: Refactor verification of MSR_RI (bsc#1223191).\n- printk: Add this_cpu_in_panic() (bsc#1223574).\n- printk: Adjust mapping for 32bit seq macros (bsc#1223574).\n- printk: Avoid non-panic CPUs writing to ringbuffer (bsc#1223574).\n- printk: Disable passing console lock owner completely during panic() (bsc#1223574).\n- printk: Drop console_sem during panic (bsc#1223574).\n- printk: Rename abandon_console_lock_in_panic() to other_cpu_in_panic() (bsc#1223574).\n- printk: Use prb_first_seq() as base for 32bit seq macros (bsc#1223574).\n- printk: Wait for all reserved records with pr_flush() (bsc#1223574).\n- printk: nbcon: Relocate 32bit seq macros (bsc#1223574).\n- printk: ringbuffer: Clarify special lpos values (bsc#1223574).\n- printk: ringbuffer: Cleanup reader terminology (bsc#1223574).\n- printk: ringbuffer: Do not skip non-finalized records with prb_next_seq() (bsc#1223574).\n- printk: ringbuffer: Improve prb_next_seq() performance (bsc#1223574).\n- printk: ringbuffer: Skip non-finalized records in panic (bsc#1223574).\n- pstore/zone: Add a null pointer check to the psz_kmsg_read (stable-fixes).\n- ring-buffer: Only update pages_touched when a new page is touched (git-fixes).\n- ring-buffer: use READ_ONCE() to read cpu_buffer-\u003ecommit_page in concurrent environment (git-fixes).\n- s390/cio: Ensure the copied buf is NUL terminated (git-fixes bsc#1223875).\n- s390/decompressor: fix misaligned symbol build error (git-fixes bsc#1223785).\n- s390/mm: Fix clearing storage keys for huge pages (git-fixes bsc#1223877).\n- s390/mm: Fix storage key clearing for guest huge pages (git-fixes bsc#1223878).\n- s390/qeth: Fix kernel panic after setting hsuid (git-fixes bsc#1223879).\n- s390/scm: fix virtual vs physical address confusion (git-fixes bsc#1223784).\n- s390/vdso: Add CFI for RA register to asm macro vdso_func (git-fixes bsc#1223876).\n- s390/vdso: drop \u0027-fPIC\u0027 from LDFLAGS (git-fixes bsc#1223598).\n- s390/zcrypt: fix reference counting on zcrypt card objects (git-fixes bsc#1223595).\n- serial/pmac_zilog: Remove flawed mitigation for rx irq flood (git-fixes).\n- serial: core: Provide port lock wrappers (stable-fixes).\n- serial: core: fix kernel-doc for uart_port_unlock_irqrestore() (git-fixes).\n- serial: mxs-auart: add spinlock around changing cts state (git-fixes).\n- slimbus: qcom-ngd-ctrl: Add timeout for wait operation (git-fixes).\n- speakup: Avoid crash on very long word (git-fixes).\n- speakup: Fix 8bit characters from direct synth (git-fixes).\n- spi: hisi-kunpeng: Delete the dump interface of data registers in debugfs (git-fixes).\n- tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp (git-fixes).\n- thunderbolt: Avoid notify PM core about runtime PM resume (stable-fixes).\n- thunderbolt: Fix wake configurations after device unplug (stable-fixes).\n- tracing/net_sched: Fix tracepoints that save qdisc_dev() as a string (git-fixes).\n- tracing: Show size of requested perf buffer (git-fixes).\n- usb: Disable USB3 LPM at shutdown (stable-fixes).\n- usb: Fix regression caused by invalid ep0 maxpacket in virtual SuperSpeed device (git-fixes).\n- usb: dwc2: host: Fix dereference issue in DDMA completion flow (git-fixes).\n- usb: dwc3: core: Prevent phy suspend during init (Git-fixes).\n- usb: gadget: composite: fix OS descriptors w_value logic (git-fixes).\n- usb: gadget: f_fs: Fix a race condition when processing setup packets (git-fixes).\n- usb: gadget: f_ncm: Fix UAF ncm object at re-bind after usb ep transport error (stable-fixes).\n- usb: gadget: tegra-xudc: Fix USB3 PHY retrieval logic (git-fixes).\n- usb: ohci: Prevent missed ohci interrupts (git-fixes).\n- usb: sl811-hcd: only defined function checkdone if QUIRK2 is defined (stable-fixes).\n- usb: typec: tcpci: add generic tcpci fallback compatible (stable-fixes).\n- usb: typec: tcpm: Check for port partner validity before consuming it (git-fixes).\n- usb: typec: tcpm: unregister existing source caps before re-registration (bsc#1220569).\n- usb: typec: ucsi: Ack unsupported commands (stable-fixes).\n- usb: typec: ucsi: Clear UCSI_CCI_RESET_COMPLETE before reset (stable-fixes).\n- usb: typec: ucsi: Fix connector check on init (git-fixes).\n- usb: udc: remove warning when queue disabled ep (stable-fixes).\n- virtio: treat alloc_dax() -EOPNOTSUPP failure as non-fatal (bsc#1223949).\n- wifi: ath9k: fix LNA selection in ath_ant_try_scan() (stable-fixes).\n- wifi: iwlwifi: mvm: remove old PASN station when adding a new one (git-fixes).\n- wifi: iwlwifi: mvm: return uid from iwl_mvm_build_scan_cmd (git-fixes).\n- wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes (stable-fixes).\n- wifi: nl80211: do not free NULL coalescing rule (git-fixes).\n- x86/bugs: Cache the value of MSR_IA32_ARCH_CAPABILITIES (git-fixes).\n- x86/bugs: Fix BHI documentation (git-fixes).\n- x86/bugs: Fix BHI handling of RRSBA (git-fixes).\n- x86/bugs: Fix BHI retpoline check (git-fixes).\n- x86/bugs: Fix return type of spectre_bhi_state() (git-fixes).\n- x86/bugs: Rename various \u0027ia32_cap\u0027 variables to \u0027x86_arch_cap_msr\u0027 (git-fixes).\n- x86/cpufeatures: Fix dependencies for GFNI, VAES, and VPCLMULQDQ (git-fixes).\n- x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type (jsc#PED-7167 git-fixes).\n- x86/sev: Skip ROM range scans and validation for SEV-SNP guests (jsc#PED-7167 git-fixes).\n- xfrm6: fix inet6_dev refcount underflow problem (git-fixes).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2024-1644,SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1644,openSUSE-SLE-15.5-2024-1644",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1644-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2024:1644-1",
        "url": "https://www.suse.com/support/update/announcement/2024/suse-su-20241644-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2024:1644-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2024-May/035263.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1141539",
        "url": "https://bugzilla.suse.com/1141539"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190576",
        "url": "https://bugzilla.suse.com/1190576"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1192145",
        "url": "https://bugzilla.suse.com/1192145"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1192837",
        "url": "https://bugzilla.suse.com/1192837"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1193629",
        "url": "https://bugzilla.suse.com/1193629"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1196869",
        "url": "https://bugzilla.suse.com/1196869"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1200313",
        "url": "https://bugzilla.suse.com/1200313"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1201308",
        "url": "https://bugzilla.suse.com/1201308"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1201489",
        "url": "https://bugzilla.suse.com/1201489"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1203906",
        "url": "https://bugzilla.suse.com/1203906"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1203935",
        "url": "https://bugzilla.suse.com/1203935"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1204614",
        "url": "https://bugzilla.suse.com/1204614"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1207361",
        "url": "https://bugzilla.suse.com/1207361"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1211592",
        "url": "https://bugzilla.suse.com/1211592"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1213573",
        "url": "https://bugzilla.suse.com/1213573"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1217339",
        "url": "https://bugzilla.suse.com/1217339"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1217408",
        "url": "https://bugzilla.suse.com/1217408"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1218562",
        "url": "https://bugzilla.suse.com/1218562"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1218917",
        "url": "https://bugzilla.suse.com/1218917"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1219104",
        "url": "https://bugzilla.suse.com/1219104"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1219126",
        "url": "https://bugzilla.suse.com/1219126"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1219141",
        "url": "https://bugzilla.suse.com/1219141"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1219169",
        "url": "https://bugzilla.suse.com/1219169"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1219170",
        "url": "https://bugzilla.suse.com/1219170"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1219264",
        "url": "https://bugzilla.suse.com/1219264"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1220342",
        "url": "https://bugzilla.suse.com/1220342"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1220569",
        "url": "https://bugzilla.suse.com/1220569"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1220761",
        "url": "https://bugzilla.suse.com/1220761"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221042",
        "url": "https://bugzilla.suse.com/1221042"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221044",
        "url": "https://bugzilla.suse.com/1221044"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221080",
        "url": "https://bugzilla.suse.com/1221080"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221084",
        "url": "https://bugzilla.suse.com/1221084"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221088",
        "url": "https://bugzilla.suse.com/1221088"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221299",
        "url": "https://bugzilla.suse.com/1221299"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221612",
        "url": "https://bugzilla.suse.com/1221612"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221617",
        "url": "https://bugzilla.suse.com/1221617"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221645",
        "url": "https://bugzilla.suse.com/1221645"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1221825",
        "url": "https://bugzilla.suse.com/1221825"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222294",
        "url": "https://bugzilla.suse.com/1222294"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222307",
        "url": "https://bugzilla.suse.com/1222307"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222357",
        "url": "https://bugzilla.suse.com/1222357"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222368",
        "url": "https://bugzilla.suse.com/1222368"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222379",
        "url": "https://bugzilla.suse.com/1222379"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222385",
        "url": "https://bugzilla.suse.com/1222385"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222424",
        "url": "https://bugzilla.suse.com/1222424"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222430",
        "url": "https://bugzilla.suse.com/1222430"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222435",
        "url": "https://bugzilla.suse.com/1222435"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222482",
        "url": "https://bugzilla.suse.com/1222482"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222559",
        "url": "https://bugzilla.suse.com/1222559"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222585",
        "url": "https://bugzilla.suse.com/1222585"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222613",
        "url": "https://bugzilla.suse.com/1222613"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222615",
        "url": "https://bugzilla.suse.com/1222615"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222618",
        "url": "https://bugzilla.suse.com/1222618"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222624",
        "url": "https://bugzilla.suse.com/1222624"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222666",
        "url": "https://bugzilla.suse.com/1222666"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222669",
        "url": "https://bugzilla.suse.com/1222669"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222671",
        "url": "https://bugzilla.suse.com/1222671"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222703",
        "url": "https://bugzilla.suse.com/1222703"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222704",
        "url": "https://bugzilla.suse.com/1222704"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222709",
        "url": "https://bugzilla.suse.com/1222709"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222710",
        "url": "https://bugzilla.suse.com/1222710"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222721",
        "url": "https://bugzilla.suse.com/1222721"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222726",
        "url": "https://bugzilla.suse.com/1222726"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222773",
        "url": "https://bugzilla.suse.com/1222773"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222776",
        "url": "https://bugzilla.suse.com/1222776"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222785",
        "url": "https://bugzilla.suse.com/1222785"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222787",
        "url": "https://bugzilla.suse.com/1222787"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222790",
        "url": "https://bugzilla.suse.com/1222790"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222791",
        "url": "https://bugzilla.suse.com/1222791"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222792",
        "url": "https://bugzilla.suse.com/1222792"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222793",
        "url": "https://bugzilla.suse.com/1222793"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222796",
        "url": "https://bugzilla.suse.com/1222796"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222812",
        "url": "https://bugzilla.suse.com/1222812"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222824",
        "url": "https://bugzilla.suse.com/1222824"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222829",
        "url": "https://bugzilla.suse.com/1222829"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222832",
        "url": "https://bugzilla.suse.com/1222832"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222836",
        "url": "https://bugzilla.suse.com/1222836"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222838",
        "url": "https://bugzilla.suse.com/1222838"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222866",
        "url": "https://bugzilla.suse.com/1222866"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222867",
        "url": "https://bugzilla.suse.com/1222867"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222869",
        "url": "https://bugzilla.suse.com/1222869"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222870",
        "url": "https://bugzilla.suse.com/1222870"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222876",
        "url": "https://bugzilla.suse.com/1222876"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222878",
        "url": "https://bugzilla.suse.com/1222878"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222879",
        "url": "https://bugzilla.suse.com/1222879"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222881",
        "url": "https://bugzilla.suse.com/1222881"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222883",
        "url": "https://bugzilla.suse.com/1222883"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222888",
        "url": "https://bugzilla.suse.com/1222888"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222894",
        "url": "https://bugzilla.suse.com/1222894"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222901",
        "url": "https://bugzilla.suse.com/1222901"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222968",
        "url": "https://bugzilla.suse.com/1222968"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1222976",
        "url": "https://bugzilla.suse.com/1222976"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223012",
        "url": "https://bugzilla.suse.com/1223012"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223014",
        "url": "https://bugzilla.suse.com/1223014"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223016",
        "url": "https://bugzilla.suse.com/1223016"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223024",
        "url": "https://bugzilla.suse.com/1223024"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223033",
        "url": "https://bugzilla.suse.com/1223033"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223034",
        "url": "https://bugzilla.suse.com/1223034"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223035",
        "url": "https://bugzilla.suse.com/1223035"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223036",
        "url": "https://bugzilla.suse.com/1223036"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223037",
        "url": "https://bugzilla.suse.com/1223037"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223041",
        "url": "https://bugzilla.suse.com/1223041"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223042",
        "url": "https://bugzilla.suse.com/1223042"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223051",
        "url": "https://bugzilla.suse.com/1223051"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223052",
        "url": "https://bugzilla.suse.com/1223052"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223056",
        "url": "https://bugzilla.suse.com/1223056"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223057",
        "url": "https://bugzilla.suse.com/1223057"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223058",
        "url": "https://bugzilla.suse.com/1223058"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223060",
        "url": "https://bugzilla.suse.com/1223060"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223061",
        "url": "https://bugzilla.suse.com/1223061"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223065",
        "url": "https://bugzilla.suse.com/1223065"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223066",
        "url": "https://bugzilla.suse.com/1223066"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223076",
        "url": "https://bugzilla.suse.com/1223076"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223078",
        "url": "https://bugzilla.suse.com/1223078"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223111",
        "url": "https://bugzilla.suse.com/1223111"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223115",
        "url": "https://bugzilla.suse.com/1223115"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223118",
        "url": "https://bugzilla.suse.com/1223118"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223119",
        "url": "https://bugzilla.suse.com/1223119"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223140",
        "url": "https://bugzilla.suse.com/1223140"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223187",
        "url": "https://bugzilla.suse.com/1223187"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223189",
        "url": "https://bugzilla.suse.com/1223189"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223190",
        "url": "https://bugzilla.suse.com/1223190"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223191",
        "url": "https://bugzilla.suse.com/1223191"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223196",
        "url": "https://bugzilla.suse.com/1223196"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223197",
        "url": "https://bugzilla.suse.com/1223197"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223198",
        "url": "https://bugzilla.suse.com/1223198"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223207",
        "url": "https://bugzilla.suse.com/1223207"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223275",
        "url": "https://bugzilla.suse.com/1223275"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223323",
        "url": "https://bugzilla.suse.com/1223323"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223360",
        "url": "https://bugzilla.suse.com/1223360"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223369",
        "url": "https://bugzilla.suse.com/1223369"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223380",
        "url": "https://bugzilla.suse.com/1223380"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223432",
        "url": "https://bugzilla.suse.com/1223432"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223473",
        "url": "https://bugzilla.suse.com/1223473"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223474",
        "url": "https://bugzilla.suse.com/1223474"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223475",
        "url": "https://bugzilla.suse.com/1223475"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223477",
        "url": "https://bugzilla.suse.com/1223477"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223478",
        "url": "https://bugzilla.suse.com/1223478"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223479",
        "url": "https://bugzilla.suse.com/1223479"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223481",
        "url": "https://bugzilla.suse.com/1223481"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223482",
        "url": "https://bugzilla.suse.com/1223482"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223484",
        "url": "https://bugzilla.suse.com/1223484"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223487",
        "url": "https://bugzilla.suse.com/1223487"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223490",
        "url": "https://bugzilla.suse.com/1223490"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223496",
        "url": "https://bugzilla.suse.com/1223496"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223498",
        "url": "https://bugzilla.suse.com/1223498"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223499",
        "url": "https://bugzilla.suse.com/1223499"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223501",
        "url": "https://bugzilla.suse.com/1223501"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223502",
        "url": "https://bugzilla.suse.com/1223502"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223503",
        "url": "https://bugzilla.suse.com/1223503"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223505",
        "url": "https://bugzilla.suse.com/1223505"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223509",
        "url": "https://bugzilla.suse.com/1223509"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223511",
        "url": "https://bugzilla.suse.com/1223511"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223512",
        "url": "https://bugzilla.suse.com/1223512"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223513",
        "url": "https://bugzilla.suse.com/1223513"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223516",
        "url": "https://bugzilla.suse.com/1223516"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223517",
        "url": "https://bugzilla.suse.com/1223517"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223518",
        "url": "https://bugzilla.suse.com/1223518"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223519",
        "url": "https://bugzilla.suse.com/1223519"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223520",
        "url": "https://bugzilla.suse.com/1223520"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223522",
        "url": "https://bugzilla.suse.com/1223522"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223523",
        "url": "https://bugzilla.suse.com/1223523"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223525",
        "url": "https://bugzilla.suse.com/1223525"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223536",
        "url": "https://bugzilla.suse.com/1223536"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223539",
        "url": "https://bugzilla.suse.com/1223539"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223574",
        "url": "https://bugzilla.suse.com/1223574"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223595",
        "url": "https://bugzilla.suse.com/1223595"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223598",
        "url": "https://bugzilla.suse.com/1223598"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223628",
        "url": "https://bugzilla.suse.com/1223628"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223634",
        "url": "https://bugzilla.suse.com/1223634"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223640",
        "url": "https://bugzilla.suse.com/1223640"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223643",
        "url": "https://bugzilla.suse.com/1223643"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223644",
        "url": "https://bugzilla.suse.com/1223644"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223645",
        "url": "https://bugzilla.suse.com/1223645"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223646",
        "url": "https://bugzilla.suse.com/1223646"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223648",
        "url": "https://bugzilla.suse.com/1223648"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223655",
        "url": "https://bugzilla.suse.com/1223655"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223657",
        "url": "https://bugzilla.suse.com/1223657"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223660",
        "url": "https://bugzilla.suse.com/1223660"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223661",
        "url": "https://bugzilla.suse.com/1223661"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223663",
        "url": "https://bugzilla.suse.com/1223663"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223664",
        "url": "https://bugzilla.suse.com/1223664"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223668",
        "url": "https://bugzilla.suse.com/1223668"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223670",
        "url": "https://bugzilla.suse.com/1223670"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223679",
        "url": "https://bugzilla.suse.com/1223679"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223686",
        "url": "https://bugzilla.suse.com/1223686"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223693",
        "url": "https://bugzilla.suse.com/1223693"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223705",
        "url": "https://bugzilla.suse.com/1223705"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223714",
        "url": "https://bugzilla.suse.com/1223714"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223735",
        "url": "https://bugzilla.suse.com/1223735"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223738",
        "url": "https://bugzilla.suse.com/1223738"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223745",
        "url": "https://bugzilla.suse.com/1223745"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223784",
        "url": "https://bugzilla.suse.com/1223784"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223785",
        "url": "https://bugzilla.suse.com/1223785"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223790",
        "url": "https://bugzilla.suse.com/1223790"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223816",
        "url": "https://bugzilla.suse.com/1223816"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223821",
        "url": "https://bugzilla.suse.com/1223821"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223822",
        "url": "https://bugzilla.suse.com/1223822"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223823",
        "url": "https://bugzilla.suse.com/1223823"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223824",
        "url": "https://bugzilla.suse.com/1223824"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223827",
        "url": "https://bugzilla.suse.com/1223827"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223834",
        "url": "https://bugzilla.suse.com/1223834"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223858",
        "url": "https://bugzilla.suse.com/1223858"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223875",
        "url": "https://bugzilla.suse.com/1223875"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223876",
        "url": "https://bugzilla.suse.com/1223876"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223877",
        "url": "https://bugzilla.suse.com/1223877"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223878",
        "url": "https://bugzilla.suse.com/1223878"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223879",
        "url": "https://bugzilla.suse.com/1223879"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223894",
        "url": "https://bugzilla.suse.com/1223894"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223921",
        "url": "https://bugzilla.suse.com/1223921"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223922",
        "url": "https://bugzilla.suse.com/1223922"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223923",
        "url": "https://bugzilla.suse.com/1223923"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223924",
        "url": "https://bugzilla.suse.com/1223924"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223929",
        "url": "https://bugzilla.suse.com/1223929"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223931",
        "url": "https://bugzilla.suse.com/1223931"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223932",
        "url": "https://bugzilla.suse.com/1223932"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223934",
        "url": "https://bugzilla.suse.com/1223934"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223941",
        "url": "https://bugzilla.suse.com/1223941"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223948",
        "url": "https://bugzilla.suse.com/1223948"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223949",
        "url": "https://bugzilla.suse.com/1223949"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223950",
        "url": "https://bugzilla.suse.com/1223950"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223951",
        "url": "https://bugzilla.suse.com/1223951"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223952",
        "url": "https://bugzilla.suse.com/1223952"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223953",
        "url": "https://bugzilla.suse.com/1223953"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223956",
        "url": "https://bugzilla.suse.com/1223956"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223957",
        "url": "https://bugzilla.suse.com/1223957"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223960",
        "url": "https://bugzilla.suse.com/1223960"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223962",
        "url": "https://bugzilla.suse.com/1223962"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223963",
        "url": "https://bugzilla.suse.com/1223963"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223964",
        "url": "https://bugzilla.suse.com/1223964"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1223996",
        "url": "https://bugzilla.suse.com/1223996"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47047 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47047/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47184 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47184/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47185 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47185/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47187 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47187/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47188 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47188/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47191 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47191/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47192 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47192/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47193 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47193/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47194 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47194/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47195 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47195/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47196 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47196/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47197 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47197/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47198 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47198/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47199 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47199/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47200 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47200/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47201 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47201/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47202 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47202/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47203 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47203/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47204 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47204/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47205 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47205/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47206 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47206/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47207 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47207/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47209 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47209/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47210 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47210/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47211 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47211/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47212 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47212/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47214 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47214/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47215 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47215/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47216 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47216/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47217 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47217/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47218 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47218/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-47219 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-47219/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48631 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48631/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48632 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48632/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48634 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48634/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48636 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48636/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48637 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48637/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48638 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48638/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48639 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48639/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48640 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48640/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48642 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48642/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48644 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48644/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48646 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48646/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48647 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48647/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48648 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48650 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48650/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48651 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48651/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48652 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48652/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48653 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48653/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48654 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48654/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48655 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48655/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48656 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48657 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48657/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48658 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48658/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48659 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48659/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48660 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48660/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48662 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48662/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48663 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48663/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48667 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48667/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48668 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48668/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48671 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48671/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48672 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48672/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48673 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48673/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48675 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48675/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48686 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48686/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48687 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48687/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48688 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48688/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48690 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48690/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48692 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48692/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48693 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48693/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48694 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48694/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48695 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48695/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48697 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48697/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48698 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48698/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48699 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48699/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48700 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48700/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48701 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48701/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48702 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48702/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48703 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48703/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-48704 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-48704/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-2860 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-2860/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52585 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52585/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52589 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52589/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52590 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52590/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52591 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52591/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52593 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52593/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52614 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52614/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52616 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52616/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52620 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52620/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52635 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52635/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52645 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52645/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52646 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52646/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-52652 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-52652/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-6270 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-6270/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-0639 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-0639/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-0841 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-0841/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-2201 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-2201/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-22099 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-22099/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-23307 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-23307/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-23848 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-23848/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-23850 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-23850/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26601 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26601/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26610 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26610/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26656 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26671 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26671/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26673 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26673/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26675 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26675/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26679 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26679/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26687 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26687/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26688 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26688/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26700 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26700/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26702 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26702/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26733 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26733/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26739 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26739/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26764 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26764/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26766 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26766/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26772 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26772/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26773 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26773/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26783 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26783/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26791 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26791/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26792 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26792/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26816 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26816/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26817 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26817/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26820 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26820/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26825 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26825/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26830 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26830/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26833 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26833/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26836 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26836/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26840 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26840/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26843 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26843/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26852 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26852/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26853 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26853/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26855 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26855/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26856 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26856/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26857 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26857/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26861 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26861/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26862 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26862/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26866 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26866/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26872 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26872/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26875 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26875/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26876 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26876/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26877 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26877/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26878 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26878/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26879 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26879/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26881 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26881/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26882 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26882/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26883 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26883/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26884 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26884/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26885 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26885/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26891 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26891/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26893 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26893/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26895 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26895/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26896 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26896/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26897 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26897/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26898 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26898/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26901 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26901/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26903 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26903/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26915 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26915/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26917 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26917/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26927 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26927/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26933 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26933/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26939 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26939/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26948 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26948/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26950 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26950/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26951 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26951/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26955 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26955/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26956 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26956/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26960 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26960/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26965 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26965/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26966 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26966/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26969 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26969/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26970 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26970/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26972 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26972/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26979 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26979/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26981 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26981/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26982 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26982/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-26993 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-26993/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27013 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27013/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27014 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27014/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27030 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27030/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27038 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27038/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27039 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27039/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27041 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27041/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27042 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27042/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27043 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27043/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27046 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27046/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27056 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27056/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27059 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27059/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27062 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27062/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2024-27389 page",
        "url": "https://www.suse.com/security/cve/CVE-2024-27389/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2024-05-14T14:29:53Z",
      "generator": {
        "date": "2024-05-14T14:29:53Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2024:1644-1",
      "initial_release_date": "2024-05-14T14:29:53Z",
      "revision_history": [
        {
          "date": "2024-05-14T14:29:53Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "kernel-azure-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "kernel-azure-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "kernel-azure-devel-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "kernel-azure-extra-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "kernel-azure-optional-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "kernel-syms-azure-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                "product": {
                  "name": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
                  "product_id": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
                "product": {
                  "name": "kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
                  "product_id": "kernel-devel-azure-5.14.21-150500.33.51.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-azure-5.14.21-150500.33.51.1.noarch",
                "product": {
                  "name": "kernel-source-azure-5.14.21-150500.33.51.1.noarch",
                  "product_id": "kernel-source-azure-5.14.21-150500.33.51.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "kernel-azure-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "kernel-azure-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "kernel-azure-devel-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "kernel-azure-extra-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "kernel-azure-optional-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "kernel-syms-azure-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                "product": {
                  "name": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64",
                  "product_id": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
                  "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.5",
                "product": {
                  "name": "openSUSE Leap 15.5",
                  "product_id": "openSUSE Leap 15.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-5.14.21-150500.33.51.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-5.14.21-150500.33.51.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-devel-5.14.21-150500.33.51.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-devel-5.14.21-150500.33.51.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-azure-5.14.21-150500.33.51.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch"
        },
        "product_reference": "kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-azure-5.14.21-150500.33.51.1.noarch as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch"
        },
        "product_reference": "kernel-source-azure-5.14.21-150500.33.51.1.noarch",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-azure-5.14.21-150500.33.51.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-azure-5.14.21-150500.33.51.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP5",
          "product_id": "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-devel-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-devel-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-extra-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-extra-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-optional-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-optional-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-azure-5.14.21-150500.33.51.1.noarch as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch"
        },
        "product_reference": "kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-azure-5.14.21-150500.33.51.1.noarch as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch"
        },
        "product_reference": "kernel-source-azure-5.14.21-150500.33.51.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-azure-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-azure-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64"
        },
        "product_reference": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64 as component of openSUSE Leap 15.5",
          "product_id": "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        },
        "product_reference": "reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-47047",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47047"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: spi-zynqmp-gqspi: return -ENOMEM if dma_map_single fails\n\nThe spi controller supports 44-bit address space on AXI in DMA mode,\nso set dma_addr_t width to 44-bit to avoid using a swiotlb mapping.\nIn addition, if dma_map_single fails, it should return immediately\ninstead of continuing doing the DMA operation which bases on invalid\naddress.\n\nThis fixes the following crash which occurs in reading a big block\nfrom flash:\n\n[  123.633577] zynqmp-qspi ff0f0000.spi: swiotlb buffer is full (sz: 4194304 bytes), total 32768 (slots), used 0 (slots)\n[  123.644230] zynqmp-qspi ff0f0000.spi: ERR:rxdma:memory not mapped\n[  123.784625] Unable to handle kernel paging request at virtual address 00000000003fffc0\n[  123.792536] Mem abort info:\n[  123.795313]   ESR = 0x96000145\n[  123.798351]   EC = 0x25: DABT (current EL), IL = 32 bits\n[  123.803655]   SET = 0, FnV = 0\n[  123.806693]   EA = 0, S1PTW = 0\n[  123.809818] Data abort info:\n[  123.812683]   ISV = 0, ISS = 0x00000145\n[  123.816503]   CM = 1, WnR = 1\n[  123.819455] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000805047000\n[  123.825887] [00000000003fffc0] pgd=0000000803b45003, p4d=0000000803b45003, pud=0000000000000000\n[  123.834586] Internal error: Oops: 96000145 [#1] PREEMPT SMP",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47047",
          "url": "https://www.suse.com/security/cve/CVE-2021-47047"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220761 for CVE-2021-47047",
          "url": "https://bugzilla.suse.com/1220761"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47047"
    },
    {
      "cve": "CVE-2021-47184",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47184"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Fix NULL ptr dereference on VSI filter sync\n\nRemove the reason of null pointer dereference in sync VSI filters.\nAdded new I40E_VSI_RELEASING flag to signalize deleting and releasing\nof VSI resources to sync this thread with sync filters subtask.\nWithout this patch it is possible to start update the VSI filter list\nafter VSI is removed, that\u0027s causing a kernel oops.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47184",
          "url": "https://www.suse.com/security/cve/CVE-2021-47184"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222666 for CVE-2021-47184",
          "url": "https://bugzilla.suse.com/1222666"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47184"
    },
    {
      "cve": "CVE-2021-47185",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47185"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: tty_buffer: Fix the softlockup issue in flush_to_ldisc\n\nWhen running ltp testcase(ltp/testcases/kernel/pty/pty04.c) with arm64, there is a soft lockup,\nwhich look like this one:\n\n  Workqueue: events_unbound flush_to_ldisc\n  Call trace:\n   dump_backtrace+0x0/0x1ec\n   show_stack+0x24/0x30\n   dump_stack+0xd0/0x128\n   panic+0x15c/0x374\n   watchdog_timer_fn+0x2b8/0x304\n   __run_hrtimer+0x88/0x2c0\n   __hrtimer_run_queues+0xa4/0x120\n   hrtimer_interrupt+0xfc/0x270\n   arch_timer_handler_phys+0x40/0x50\n   handle_percpu_devid_irq+0x94/0x220\n   __handle_domain_irq+0x88/0xf0\n   gic_handle_irq+0x84/0xfc\n   el1_irq+0xc8/0x180\n   slip_unesc+0x80/0x214 [slip]\n   tty_ldisc_receive_buf+0x64/0x80\n   tty_port_default_receive_buf+0x50/0x90\n   flush_to_ldisc+0xbc/0x110\n   process_one_work+0x1d4/0x4b0\n   worker_thread+0x180/0x430\n   kthread+0x11c/0x120\n\nIn the testcase pty04, The first process call the write syscall to send\ndata to the pty master. At the same time, the workqueue will do the\nflush_to_ldisc to pop data in a loop until there is no more data left.\nWhen the sender and workqueue running in different core, the sender sends\ndata fastly in full time which will result in workqueue doing work in loop\nfor a long time and occuring softlockup in flush_to_ldisc with kernel\nconfigured without preempt. So I add need_resched check and cond_resched\nin the flush_to_ldisc loop to avoid it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47185",
          "url": "https://www.suse.com/security/cve/CVE-2021-47185"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222669 for CVE-2021-47185",
          "url": "https://bugzilla.suse.com/1222669"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47185"
    },
    {
      "cve": "CVE-2021-47187",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47187"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency\n\nThe entry/exit latency and minimum residency in state for the idle\nstates of MSM8998 were ..bad: first of all, for all of them the\ntimings were written for CPU sleep but the min-residency-us param\nwas miscalculated (supposedly, while porting this from downstream);\nThen, the power collapse states are setting PC on both the CPU\ncluster *and* the L2 cache, which have different timings: in the\nspecific case of L2 the times are higher so these ones should be\ntaken into account instead of the CPU ones.\n\nThis parameter misconfiguration was not giving particular issues\nbecause on MSM8998 there was no CPU scaling at all, so cluster/L2\npower collapse was rarely (if ever) hit.\nWhen CPU scaling is enabled, though, the wrong timings will produce\nSoC unstability shown to the user as random, apparently error-less,\nsudden reboots and/or lockups.\n\nThis set of parameters are stabilizing the SoC when CPU scaling is\nON and when power collapse is frequently hit.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47187",
          "url": "https://www.suse.com/security/cve/CVE-2021-47187"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222703 for CVE-2021-47187",
          "url": "https://bugzilla.suse.com/1222703"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47187"
    },
    {
      "cve": "CVE-2021-47188",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47188"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: Improve SCSI abort handling\n\nThe following has been observed on a test setup:\n\nWARNING: CPU: 4 PID: 250 at drivers/scsi/ufs/ufshcd.c:2737 ufshcd_queuecommand+0x468/0x65c\nCall trace:\n ufshcd_queuecommand+0x468/0x65c\n scsi_send_eh_cmnd+0x224/0x6a0\n scsi_eh_test_devices+0x248/0x418\n scsi_eh_ready_devs+0xc34/0xe58\n scsi_error_handler+0x204/0x80c\n kthread+0x150/0x1b4\n ret_from_fork+0x10/0x30\n\nThat warning is triggered by the following statement:\n\n\tWARN_ON(lrbp-\u003ecmd);\n\nFix this warning by clearing lrbp-\u003ecmd from the abort handler.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47188",
          "url": "https://www.suse.com/security/cve/CVE-2021-47188"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222671 for CVE-2021-47188",
          "url": "https://bugzilla.suse.com/1222671"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47188"
    },
    {
      "cve": "CVE-2021-47191",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47191"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: scsi_debug: Fix out-of-bound read in resp_readcap16()\n\nThe following warning was observed running syzkaller:\n\n[ 3813.830724] sg_write: data in/out 65466/242 bytes for SCSI command 0x9e-- guessing data in;\n[ 3813.830724]    program syz-executor not setting count and/or reply_len properly\n[ 3813.836956] ==================================================================\n[ 3813.839465] BUG: KASAN: stack-out-of-bounds in sg_copy_buffer+0x157/0x1e0\n[ 3813.841773] Read of size 4096 at addr ffff8883cf80f540 by task syz-executor/1549\n[ 3813.846612] Call Trace:\n[ 3813.846995]  dump_stack+0x108/0x15f\n[ 3813.847524]  print_address_description+0xa5/0x372\n[ 3813.848243]  kasan_report.cold+0x236/0x2a8\n[ 3813.849439]  check_memory_region+0x240/0x270\n[ 3813.850094]  memcpy+0x30/0x80\n[ 3813.850553]  sg_copy_buffer+0x157/0x1e0\n[ 3813.853032]  sg_copy_from_buffer+0x13/0x20\n[ 3813.853660]  fill_from_dev_buffer+0x135/0x370\n[ 3813.854329]  resp_readcap16+0x1ac/0x280\n[ 3813.856917]  schedule_resp+0x41f/0x1630\n[ 3813.858203]  scsi_debug_queuecommand+0xb32/0x17e0\n[ 3813.862699]  scsi_dispatch_cmd+0x330/0x950\n[ 3813.863329]  scsi_request_fn+0xd8e/0x1710\n[ 3813.863946]  __blk_run_queue+0x10b/0x230\n[ 3813.864544]  blk_execute_rq_nowait+0x1d8/0x400\n[ 3813.865220]  sg_common_write.isra.0+0xe61/0x2420\n[ 3813.871637]  sg_write+0x6c8/0xef0\n[ 3813.878853]  __vfs_write+0xe4/0x800\n[ 3813.883487]  vfs_write+0x17b/0x530\n[ 3813.884008]  ksys_write+0x103/0x270\n[ 3813.886268]  __x64_sys_write+0x77/0xc0\n[ 3813.886841]  do_syscall_64+0x106/0x360\n[ 3813.887415]  entry_SYSCALL_64_after_hwframe+0x44/0xa9\n\nThis issue can be reproduced with the following syzkaller log:\n\nr0 = openat(0xffffffffffffff9c, \u0026(0x7f0000000040)=\u0027./file0\\x00\u0027, 0x26e1, 0x0)\nr1 = syz_open_procfs(0xffffffffffffffff, \u0026(0x7f0000000000)=\u0027fd/3\\x00\u0027)\nopen_by_handle_at(r1, \u0026(0x7f00000003c0)=ANY=[@ANYRESHEX], 0x602000)\nr2 = syz_open_dev$sg(\u0026(0x7f0000000000), 0x0, 0x40782)\nwrite$binfmt_aout(r2, \u0026(0x7f0000000340)=ANY=[@ANYBLOB=\"00000000deff000000000000000000000000000000000000000000000000000047f007af9e107a41ec395f1bded7be24277a1501ff6196a83366f4e6362bc0ff2b247f68a972989b094b2da4fb3607fcf611a22dd04310d28c75039d\"], 0x126)\n\nIn resp_readcap16() we get \"int alloc_len\" value -1104926854, and then pass\nthe huge arr_len to fill_from_dev_buffer(), but arr is only 32 bytes. This\nleads to OOB in sg_copy_buffer().\n\nTo solve this issue, define alloc_len as u32.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47191",
          "url": "https://www.suse.com/security/cve/CVE-2021-47191"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222866 for CVE-2021-47191",
          "url": "https://bugzilla.suse.com/1222866"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47191"
    },
    {
      "cve": "CVE-2021-47192",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47192"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: core: sysfs: Fix hang when device state is set via sysfs\n\nThis fixes a regression added with:\n\ncommit f0f82e2476f6 (\"scsi: core: Fix capacity set to zero after\nofflinining device\")\n\nThe problem is that after iSCSI recovery, iscsid will call into the kernel\nto set the dev\u0027s state to running, and with that patch we now call\nscsi_rescan_device() with the state_mutex held. If the SCSI error handler\nthread is just starting to test the device in scsi_send_eh_cmnd() then it\u0027s\ngoing to try to grab the state_mutex.\n\nWe are then stuck, because when scsi_rescan_device() tries to send its I/O\nscsi_queue_rq() calls -\u003e scsi_host_queue_ready() -\u003e scsi_host_in_recovery()\nwhich will return true (the host state is still in recovery) and I/O will\njust be requeued. scsi_send_eh_cmnd() will then never be able to grab the\nstate_mutex to finish error handling.\n\nTo prevent the deadlock move the rescan-related code to after we drop the\nstate_mutex.\n\nThis also adds a check for if we are already in the running state. This\nprevents extra scans and helps the iscsid case where if the transport class\nhas already onlined the device during its recovery process then we don\u0027t\nneed userspace to do it again plus possibly block that daemon.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47192",
          "url": "https://www.suse.com/security/cve/CVE-2021-47192"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222867 for CVE-2021-47192",
          "url": "https://bugzilla.suse.com/1222867"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47192"
    },
    {
      "cve": "CVE-2021-47193",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47193"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: pm80xx: Fix memory leak during rmmod\n\nDriver failed to release all memory allocated. This would lead to memory\nleak during driver removal.\n\nProperly free memory when the module is removed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47193",
          "url": "https://www.suse.com/security/cve/CVE-2021-47193"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222879 for CVE-2021-47193",
          "url": "https://bugzilla.suse.com/1222879"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47193"
    },
    {
      "cve": "CVE-2021-47194",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47194"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncfg80211: call cfg80211_stop_ap when switch from P2P_GO type\n\nIf the userspace tools switch from NL80211_IFTYPE_P2P_GO to\nNL80211_IFTYPE_ADHOC via send_msg(NL80211_CMD_SET_INTERFACE), it\ndoes not call the cleanup cfg80211_stop_ap(), this leads to the\ninitialization of in-use data. For example, this path re-init the\nsdata-\u003eassigned_chanctx_list while it is still an element of\nassigned_vifs list, and makes that linked list corrupt.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47194",
          "url": "https://www.suse.com/security/cve/CVE-2021-47194"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222829 for CVE-2021-47194",
          "url": "https://bugzilla.suse.com/1222829"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47194"
    },
    {
      "cve": "CVE-2021-47195",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47195"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fix use-after-free of the add_lock mutex\n\nCommit 6098475d4cb4 (\"spi: Fix deadlock when adding SPI controllers on\nSPI buses\") introduced a per-controller mutex. But mutex_unlock() of\nsaid lock is called after the controller is already freed:\n\n  spi_unregister_controller(ctlr)\n  -\u003e put_device(\u0026ctlr-\u003edev)\n    -\u003e spi_controller_release(dev)\n  -\u003e mutex_unlock(\u0026ctrl-\u003eadd_lock)\n\nMove the put_device() after the mutex_unlock().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47195",
          "url": "https://www.suse.com/security/cve/CVE-2021-47195"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222832 for CVE-2021-47195",
          "url": "https://bugzilla.suse.com/1222832"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47195"
    },
    {
      "cve": "CVE-2021-47196",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47196"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Set send and receive CQ before forwarding to the driver\n\nPreset both receive and send CQ pointers prior to call to the drivers and\noverwrite it later again till the mlx4 is going to be changed do not\noverwrite ibqp properties.\n\nThis change is needed for mlx5, because in case of QP creation failure, it\nwill go to the path of QP destroy which relies on proper CQ pointers.\n\n BUG: KASAN: use-after-free in create_qp.cold+0x164/0x16e [mlx5_ib]\n Write of size 8 at addr ffff8880064c55c0 by task a.out/246\n\n CPU: 0 PID: 246 Comm: a.out Not tainted 5.15.0+ #291\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n Call Trace:\n  dump_stack_lvl+0x45/0x59\n  print_address_description.constprop.0+0x1f/0x140\n  kasan_report.cold+0x83/0xdf\n  create_qp.cold+0x164/0x16e [mlx5_ib]\n  mlx5_ib_create_qp+0x358/0x28a0 [mlx5_ib]\n  create_qp.part.0+0x45b/0x6a0 [ib_core]\n  ib_create_qp_user+0x97/0x150 [ib_core]\n  ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs]\n  ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs]\n  ib_uverbs_ioctl+0x169/0x260 [ib_uverbs]\n  __x64_sys_ioctl+0x866/0x14d0\n  do_syscall_64+0x3d/0x90\n  entry_SYSCALL_64_after_hwframe+0x44/0xae\n\n Allocated by task 246:\n  kasan_save_stack+0x1b/0x40\n  __kasan_kmalloc+0xa4/0xd0\n  create_qp.part.0+0x92/0x6a0 [ib_core]\n  ib_create_qp_user+0x97/0x150 [ib_core]\n  ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs]\n  ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs]\n  ib_uverbs_ioctl+0x169/0x260 [ib_uverbs]\n  __x64_sys_ioctl+0x866/0x14d0\n  do_syscall_64+0x3d/0x90\n  entry_SYSCALL_64_after_hwframe+0x44/0xae\n\n Freed by task 246:\n  kasan_save_stack+0x1b/0x40\n  kasan_set_track+0x1c/0x30\n  kasan_set_free_info+0x20/0x30\n  __kasan_slab_free+0x10c/0x150\n  slab_free_freelist_hook+0xb4/0x1b0\n  kfree+0xe7/0x2a0\n  create_qp.part.0+0x52b/0x6a0 [ib_core]\n  ib_create_qp_user+0x97/0x150 [ib_core]\n  ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs]\n  ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs]\n  ib_uverbs_ioctl+0x169/0x260 [ib_uverbs]\n  __x64_sys_ioctl+0x866/0x14d0\n  do_syscall_64+0x3d/0x90\n  entry_SYSCALL_64_after_hwframe+0x44/0xae",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47196",
          "url": "https://www.suse.com/security/cve/CVE-2021-47196"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222773 for CVE-2021-47196",
          "url": "https://bugzilla.suse.com/1222773"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47196"
    },
    {
      "cve": "CVE-2021-47197",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47197"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: nullify cq-\u003edbg pointer in mlx5_debug_cq_remove()\n\nPrior to this patch in case mlx5_core_destroy_cq() failed it proceeds\nto rest of destroy operations. mlx5_core_destroy_cq() could be called again\nby user and cause additional call of mlx5_debug_cq_remove().\ncq-\u003edbg was not nullify in previous call and cause the crash.\n\nFix it by nullify cq-\u003edbg pointer after removal.\n\nAlso proceed to destroy operations only if FW return 0\nfor MLX5_CMD_OP_DESTROY_CQ command.\n\ngeneral protection fault, probably for non-canonical address 0x2000300004058: 0000 [#1] SMP PTI\nCPU: 5 PID: 1228 Comm: python Not tainted 5.15.0-rc5_for_upstream_min_debug_2021_10_14_11_06 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:lockref_get+0x1/0x60\nCode: 5d e9 53 ff ff ff 48 8d 7f 70 e8 0a 2e 48 00 c7 85 d0 00 00 00 02\n00 00 00 c6 45 70 00 fb 5d c3 c3 cc cc cc cc cc cc cc cc 53 \u003c48\u003e 8b 17\n48 89 fb 85 d2 75 3d 48 89 d0 bf 64 00 00 00 48 89 c1 48\nRSP: 0018:ffff888137dd7a38 EFLAGS: 00010206\nRAX: 0000000000000000 RBX: ffff888107d5f458 RCX: 00000000fffffffe\nRDX: 000000000002c2b0 RSI: ffffffff8155e2e0 RDI: 0002000300004058\nRBP: ffff888137dd7a88 R08: 0002000300004058 R09: ffff8881144a9f88\nR10: 0000000000000000 R11: 0000000000000000 R12: ffff8881141d4000\nR13: ffff888137dd7c68 R14: ffff888137dd7d58 R15: ffff888137dd7cc0\nFS:  00007f4644f2a4c0(0000) GS:ffff8887a2d40000(0000)\nknlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055b4500f4380 CR3: 0000000114f7a003 CR4: 0000000000170ea0\nCall Trace:\n  simple_recursive_removal+0x33/0x2e0\n  ? debugfs_remove+0x60/0x60\n  debugfs_remove+0x40/0x60\n  mlx5_debug_cq_remove+0x32/0x70 [mlx5_core]\n  mlx5_core_destroy_cq+0x41/0x1d0 [mlx5_core]\n  devx_obj_cleanup+0x151/0x330 [mlx5_ib]\n  ? __pollwait+0xd0/0xd0\n  ? xas_load+0x5/0x70\n  ? xa_load+0x62/0xa0\n  destroy_hw_idr_uobject+0x20/0x80 [ib_uverbs]\n  uverbs_destroy_uobject+0x3b/0x360 [ib_uverbs]\n  uobj_destroy+0x54/0xa0 [ib_uverbs]\n  ib_uverbs_cmd_verbs+0xaf2/0x1160 [ib_uverbs]\n  ? uverbs_finalize_object+0xd0/0xd0 [ib_uverbs]\n  ib_uverbs_ioctl+0xc4/0x1b0 [ib_uverbs]\n  __x64_sys_ioctl+0x3e4/0x8e0",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47197",
          "url": "https://www.suse.com/security/cve/CVE-2021-47197"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222776 for CVE-2021-47197",
          "url": "https://bugzilla.suse.com/1222776"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47197"
    },
    {
      "cve": "CVE-2021-47198",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47198"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine\n\nAn error is detected with the following report when unloading the driver:\n  \"KASAN: use-after-free in lpfc_unreg_rpi+0x1b1b\"\n\nThe NLP_REG_LOGIN_SEND nlp_flag is set in lpfc_reg_fab_ctrl_node(), but the\nflag is not cleared upon completion of the login.\n\nThis allows a second call to lpfc_unreg_rpi() to proceed with nlp_rpi set\nto LPFC_RPI_ALLOW_ERROR.  This results in a use after free access when used\nas an rpi_ids array index.\n\nFix by clearing the NLP_REG_LOGIN_SEND nlp_flag in\nlpfc_mbx_cmpl_fc_reg_login().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47198",
          "url": "https://www.suse.com/security/cve/CVE-2021-47198"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222883 for CVE-2021-47198",
          "url": "https://bugzilla.suse.com/1222883"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47198"
    },
    {
      "cve": "CVE-2021-47199",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47199"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT, Fix multiple allocations and memleak of mod acts\n\nCT clear action offload adds additional mod hdr actions to the\nflow\u0027s original mod actions in order to clear the registers which\nhold ct_state.\nWhen such flow also includes encap action, a neigh update event\ncan cause the driver to unoffload the flow and then reoffload it.\n\nEach time this happens, the ct clear handling adds that same set\nof mod hdr actions to reset ct_state until the max of mod hdr\nactions is reached.\n\nAlso the driver never releases the allocated mod hdr actions and\ncausing a memleak.\n\nFix above two issues by moving CT clear mod acts allocation\ninto the parsing actions phase and only use it when offloading the rule.\nThe release of mod acts will be done in the normal flow_put().\n\n backtrace:\n    [\u003c000000007316e2f3\u003e] krealloc+0x83/0xd0\n    [\u003c00000000ef157de1\u003e] mlx5e_mod_hdr_alloc+0x147/0x300 [mlx5_core]\n    [\u003c00000000970ce4ae\u003e] mlx5e_tc_match_to_reg_set_and_get_id+0xd7/0x240 [mlx5_core]\n    [\u003c0000000067c5fa17\u003e] mlx5e_tc_match_to_reg_set+0xa/0x20 [mlx5_core]\n    [\u003c00000000d032eb98\u003e] mlx5_tc_ct_entry_set_registers.isra.0+0x36/0xc0 [mlx5_core]\n    [\u003c00000000fd23b869\u003e] mlx5_tc_ct_flow_offload+0x272/0x1f10 [mlx5_core]\n    [\u003c000000004fc24acc\u003e] mlx5e_tc_offload_fdb_rules.part.0+0x150/0x620 [mlx5_core]\n    [\u003c00000000dc741c17\u003e] mlx5e_tc_encap_flows_add+0x489/0x690 [mlx5_core]\n    [\u003c00000000e92e49d7\u003e] mlx5e_rep_update_flows+0x6e4/0x9b0 [mlx5_core]\n    [\u003c00000000f60f5602\u003e] mlx5e_rep_neigh_update+0x39a/0x5d0 [mlx5_core]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47199",
          "url": "https://www.suse.com/security/cve/CVE-2021-47199"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222785 for CVE-2021-47199",
          "url": "https://bugzilla.suse.com/1222785"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47199"
    },
    {
      "cve": "CVE-2021-47200",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47200"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/prime: Fix use after free in mmap with drm_gem_ttm_mmap\n\ndrm_gem_ttm_mmap() drops a reference to the gem object on success. If\nthe gem object\u0027s refcount == 1 on entry to drm_gem_prime_mmap(), that\ndrop will free the gem object, and the subsequent drm_gem_object_get()\nwill be a UAF. Fix by grabbing a reference before calling the mmap\nhelper.\n\nThis issue was forseen when the reference dropping was adding in\ncommit 9786b65bc61ac (\"drm/ttm: fix mmap refcounting\"):\n  \"For that to work properly the drm_gem_object_get() call in\n  drm_gem_ttm_mmap() must be moved so it happens before calling\n  obj-\u003efuncs-\u003emmap(), otherwise the gem refcount would go down\n  to zero.\"",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47200",
          "url": "https://www.suse.com/security/cve/CVE-2021-47200"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222838 for CVE-2021-47200",
          "url": "https://bugzilla.suse.com/1222838"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47200"
    },
    {
      "cve": "CVE-2021-47201",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47201"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: free q_vectors before queues in iavf_disable_vf\n\niavf_free_queues() clears adapter-\u003enum_active_queues, which\niavf_free_q_vectors() relies on, so swap the order of these two function\ncalls in iavf_disable_vf(). This resolves a panic encountered when the\ninterface is disabled and then later brought up again after PF\ncommunication is restored.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47201",
          "url": "https://www.suse.com/security/cve/CVE-2021-47201"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222792 for CVE-2021-47201",
          "url": "https://bugzilla.suse.com/1222792"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47201"
    },
    {
      "cve": "CVE-2021-47202",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47202"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: Fix NULL pointer dereferences in of_thermal_ functions\n\nof_parse_thermal_zones() parses the thermal-zones node and registers a\nthermal_zone device for each subnode. However, if a thermal zone is\nconsuming a thermal sensor and that thermal sensor device hasn\u0027t probed\nyet, an attempt to set trip_point_*_temp for that thermal zone device\ncan cause a NULL pointer dereference. Fix it.\n\n console:/sys/class/thermal/thermal_zone87 # echo 120000 \u003e trip_point_0_temp\n ...\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n ...\n Call trace:\n  of_thermal_set_trip_temp+0x40/0xc4\n  trip_point_temp_store+0xc0/0x1dc\n  dev_attr_store+0x38/0x88\n  sysfs_kf_write+0x64/0xc0\n  kernfs_fop_write_iter+0x108/0x1d0\n  vfs_write+0x2f4/0x368\n  ksys_write+0x7c/0xec\n  __arm64_sys_write+0x20/0x30\n  el0_svc_common.llvm.7279915941325364641+0xbc/0x1bc\n  do_el0_svc+0x28/0xa0\n  el0_svc+0x14/0x24\n  el0_sync_handler+0x88/0xec\n  el0_sync+0x1c0/0x200\n\nWhile at it, fix the possible NULL pointer dereference in other\nfunctions as well: of_thermal_get_temp(), of_thermal_set_emul_temp(),\nof_thermal_get_trend().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47202",
          "url": "https://www.suse.com/security/cve/CVE-2021-47202"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222878 for CVE-2021-47202",
          "url": "https://bugzilla.suse.com/1222878"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47202"
    },
    {
      "cve": "CVE-2021-47203",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47203"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Fix list_add() corruption in lpfc_drain_txq()\n\nWhen parsing the txq list in lpfc_drain_txq(), the driver attempts to pass\nthe requests to the adapter. If such an attempt fails, a local \"fail_msg\"\nstring is set and a log message output.  The job is then added to a\ncompletions list for cancellation.\n\nProcessing of any further jobs from the txq list continues, but since\n\"fail_msg\" remains set, jobs are added to the completions list regardless\nof whether a wqe was passed to the adapter.  If successfully added to\ntxcmplq, jobs are added to both lists resulting in list corruption.\n\nFix by clearing the fail_msg string after adding a job to the completions\nlist. This stops the subsequent jobs from being added to the completions\nlist unless they had an appropriate failure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47203",
          "url": "https://www.suse.com/security/cve/CVE-2021-47203"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222881 for CVE-2021-47203",
          "url": "https://bugzilla.suse.com/1222881"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47203"
    },
    {
      "cve": "CVE-2021-47204",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47204"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dpaa2-eth: fix use-after-free in dpaa2_eth_remove\n\nAccess to netdev after free_netdev() will cause use-after-free bug.\nMove debug log before free_netdev() call to avoid it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47204",
          "url": "https://www.suse.com/security/cve/CVE-2021-47204"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222787 for CVE-2021-47204",
          "url": "https://bugzilla.suse.com/1222787"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47204"
    },
    {
      "cve": "CVE-2021-47205",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47205"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: sunxi-ng: Unregister clocks/resets when unbinding\n\nCurrently, unbinding a CCU driver unmaps the device\u0027s MMIO region, while\nleaving its clocks/resets and their providers registered. This can cause\na page fault later when some clock operation tries to perform MMIO. Fix\nthis by separating the CCU initialization from the memory allocation,\nand then using a devres callback to unregister the clocks and resets.\n\nThis also fixes a memory leak of the `struct ccu_reset`, and uses the\ncorrect owner (the specific platform driver) for the clocks and resets.\n\nEarly OF clock providers are never unregistered, and limited error\nhandling is possible, so they are mostly unchanged. The error reporting\nis made more consistent by moving the message inside of_sunxi_ccu_probe.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47205",
          "url": "https://www.suse.com/security/cve/CVE-2021-47205"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222888 for CVE-2021-47205",
          "url": "https://bugzilla.suse.com/1222888"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47205"
    },
    {
      "cve": "CVE-2021-47206",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47206"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: host: ohci-tmio: check return value after calling platform_get_resource()\n\nIt will cause null-ptr-deref if platform_get_resource() returns NULL,\nwe need check the return value.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47206",
          "url": "https://www.suse.com/security/cve/CVE-2021-47206"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222894 for CVE-2021-47206",
          "url": "https://bugzilla.suse.com/1222894"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47206"
    },
    {
      "cve": "CVE-2021-47207",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47207"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: gus: fix null pointer dereference on pointer block\n\nThe pointer block return from snd_gf1_dma_next_block could be\nnull, so there is a potential null pointer dereference issue.\nFix this by adding a null check before dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47207",
          "url": "https://www.suse.com/security/cve/CVE-2021-47207"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222790 for CVE-2021-47207",
          "url": "https://bugzilla.suse.com/1222790"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47207"
    },
    {
      "cve": "CVE-2021-47209",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47209"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/fair: Prevent dead task groups from regaining cfs_rq\u0027s\n\nKevin is reporting crashes which point to a use-after-free of a cfs_rq\nin update_blocked_averages(). Initial debugging revealed that we\u0027ve\nlive cfs_rq\u0027s (on_list=1) in an about to be kfree()\u0027d task group in\nfree_fair_sched_group(). However, it was unclear how that can happen.\n\nHis kernel config happened to lead to a layout of struct sched_entity\nthat put the \u0027my_q\u0027 member directly into the middle of the object\nwhich makes it incidentally overlap with SLUB\u0027s freelist pointer.\nThat, in combination with SLAB_FREELIST_HARDENED\u0027s freelist pointer\nmangling, leads to a reliable access violation in form of a #GP which\nmade the UAF fail fast.\n\nMichal seems to have run into the same issue[1]. He already correctly\ndiagnosed that commit a7b359fc6a37 (\"sched/fair: Correctly insert\ncfs_rq\u0027s to list on unthrottle\") is causing the preconditions for the\nUAF to happen by re-adding cfs_rq\u0027s also to task groups that have no\nmore running tasks, i.e. also to dead ones. His analysis, however,\nmisses the real root cause and it cannot be seen from the crash\nbacktrace only, as the real offender is tg_unthrottle_up() getting\ncalled via sched_cfs_period_timer() via the timer interrupt at an\ninconvenient time.\n\nWhen unregister_fair_sched_group() unlinks all cfs_rq\u0027s from the dying\ntask group, it doesn\u0027t protect itself from getting interrupted. If the\ntimer interrupt triggers while we iterate over all CPUs or after\nunregister_fair_sched_group() has finished but prior to unlinking the\ntask group, sched_cfs_period_timer() will execute and walk the list of\ntask groups, trying to unthrottle cfs_rq\u0027s, i.e. re-add them to the\ndying task group. These will later -- in free_fair_sched_group() -- be\nkfree()\u0027ed while still being linked, leading to the fireworks Kevin\nand Michal are seeing.\n\nTo fix this race, ensure the dying task group gets unlinked first.\nHowever, simply switching the order of unregistering and unlinking the\ntask group isn\u0027t sufficient, as concurrent RCU walkers might still see\nit, as can be seen below:\n\n    CPU1:                                      CPU2:\n      :                                        timer IRQ:\n      :                                          do_sched_cfs_period_timer():\n      :                                            :\n      :                                            distribute_cfs_runtime():\n      :                                              rcu_read_lock();\n      :                                              :\n      :                                              unthrottle_cfs_rq():\n    sched_offline_group():                             :\n      :                                                walk_tg_tree_from(\u2026,tg_unthrottle_up,\u2026):\n      list_del_rcu(\u0026tg-\u003elist);                           :\n (1)  :                                                  list_for_each_entry_rcu(child, \u0026parent-\u003echildren, siblings)\n      :                                                    :\n (2)  list_del_rcu(\u0026tg-\u003esiblings);                         :\n      :                                                    tg_unthrottle_up():\n      unregister_fair_sched_group():                         struct cfs_rq *cfs_rq = tg-\u003ecfs_rq[cpu_of(rq)];\n        :                                                    :\n        list_del_leaf_cfs_rq(tg-\u003ecfs_rq[cpu]);               :\n        :                                                    :\n        :                                                    if (!cfs_rq_is_decayed(cfs_rq) || cfs_rq-\u003enr_running)\n (3)    :                                                        list_add_leaf_cfs_rq(cfs_rq);\n      :                                                      :\n      :                                                    :\n      :                                                  :\n      :                                                :\n      :                           \n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47209",
          "url": "https://www.suse.com/security/cve/CVE-2021-47209"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222796 for CVE-2021-47209",
          "url": "https://bugzilla.suse.com/1222796"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47209"
    },
    {
      "cve": "CVE-2021-47210",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47210"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tipd: Remove WARN_ON in tps6598x_block_read\n\nCalling tps6598x_block_read with a higher than allowed len can be\nhandled by just returning an error. There\u0027s no need to crash systems\nwith panic-on-warn enabled.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47210",
          "url": "https://www.suse.com/security/cve/CVE-2021-47210"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222901 for CVE-2021-47210",
          "url": "https://bugzilla.suse.com/1222901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47210"
    },
    {
      "cve": "CVE-2021-47211",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47211"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: fix null pointer dereference on pointer cs_desc\n\nThe pointer cs_desc return from snd_usb_find_clock_source could\nbe null, so there is a potential null pointer dereference issue.\nFix this by adding a null check before dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47211",
          "url": "https://www.suse.com/security/cve/CVE-2021-47211"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222869 for CVE-2021-47211",
          "url": "https://bugzilla.suse.com/1222869"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47211"
    },
    {
      "cve": "CVE-2021-47212",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47212"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Update error handler for UCTX and UMEM\n\nIn the fast unload flow, the device state is set to internal error,\nwhich indicates that the driver started the destroy process.\nIn this case, when a destroy command is being executed, it should return\nMLX5_CMD_STAT_OK.\nFix MLX5_CMD_OP_DESTROY_UCTX and MLX5_CMD_OP_DESTROY_UMEM to return OK\ninstead of EIO.\n\nThis fixes a call trace in the umem release process -\n[ 2633.536695] Call Trace:\n[ 2633.537518]  ib_uverbs_remove_one+0xc3/0x140 [ib_uverbs]\n[ 2633.538596]  remove_client_context+0x8b/0xd0 [ib_core]\n[ 2633.539641]  disable_device+0x8c/0x130 [ib_core]\n[ 2633.540615]  __ib_unregister_device+0x35/0xa0 [ib_core]\n[ 2633.541640]  ib_unregister_device+0x21/0x30 [ib_core]\n[ 2633.542663]  __mlx5_ib_remove+0x38/0x90 [mlx5_ib]\n[ 2633.543640]  auxiliary_bus_remove+0x1e/0x30 [auxiliary]\n[ 2633.544661]  device_release_driver_internal+0x103/0x1f0\n[ 2633.545679]  bus_remove_device+0xf7/0x170\n[ 2633.546640]  device_del+0x181/0x410\n[ 2633.547606]  mlx5_rescan_drivers_locked.part.10+0x63/0x160 [mlx5_core]\n[ 2633.548777]  mlx5_unregister_device+0x27/0x40 [mlx5_core]\n[ 2633.549841]  mlx5_uninit_one+0x21/0xc0 [mlx5_core]\n[ 2633.550864]  remove_one+0x69/0xe0 [mlx5_core]\n[ 2633.551819]  pci_device_remove+0x3b/0xc0\n[ 2633.552731]  device_release_driver_internal+0x103/0x1f0\n[ 2633.553746]  unbind_store+0xf6/0x130\n[ 2633.554657]  kernfs_fop_write+0x116/0x190\n[ 2633.555567]  vfs_write+0xa5/0x1a0\n[ 2633.556407]  ksys_write+0x4f/0xb0\n[ 2633.557233]  do_syscall_64+0x5b/0x1a0\n[ 2633.558071]  entry_SYSCALL_64_after_hwframe+0x65/0xca\n[ 2633.559018] RIP: 0033:0x7f9977132648\n[ 2633.559821] Code: 89 02 48 c7 c0 ff ff ff ff eb b3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 8d 05 55 6f 2d 00 8b 00 85 c0 75 17 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 41 54 49 89 d4 55\n[ 2633.562332] RSP: 002b:00007fffb1a83888 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n[ 2633.563472] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00007f9977132648\n[ 2633.564541] RDX: 000000000000000c RSI: 000055b90546e230 RDI: 0000000000000001\n[ 2633.565596] RBP: 000055b90546e230 R08: 00007f9977406860 R09: 00007f9977a54740\n[ 2633.566653] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f99774056e0\n[ 2633.567692] R13: 000000000000000c R14: 00007f9977400880 R15: 000000000000000c\n[ 2633.568725] ---[ end trace 10b4fe52945e544d ]---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47212",
          "url": "https://www.suse.com/security/cve/CVE-2021-47212"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222709 for CVE-2021-47212",
          "url": "https://bugzilla.suse.com/1222709"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47212"
    },
    {
      "cve": "CVE-2021-47214",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47214"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhugetlb, userfaultfd: fix reservation restore on userfaultfd error\n\nCurrently in the is_continue case in hugetlb_mcopy_atomic_pte(), if we\nbail out using \"goto out_release_unlock;\" in the cases where idx \u003e=\nsize, or !huge_pte_none(), the code will detect that new_pagecache_page\n== false, and so call restore_reserve_on_error().  In this case I see\nrestore_reserve_on_error() delete the reservation, and the following\ncall to remove_inode_hugepages() will increment h-\u003eresv_hugepages\ncausing a 100% reproducible leak.\n\nWe should treat the is_continue case similar to adding a page into the\npagecache and set new_pagecache_page to true, to indicate that there is\nno reservation to restore on the error path, and we need not call\nrestore_reserve_on_error().  Rename new_pagecache_page to\npage_in_pagecache to make that clear.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47214",
          "url": "https://www.suse.com/security/cve/CVE-2021-47214"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222710 for CVE-2021-47214",
          "url": "https://bugzilla.suse.com/1222710"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47214"
    },
    {
      "cve": "CVE-2021-47215",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47215"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: kTLS, Fix crash in RX resync flow\n\nFor the TLS RX resync flow, we maintain a list of TLS contexts\nthat require some attention, to communicate their resync information\nto the HW.\nHere we fix list corruptions, by protecting the entries against\nmovements coming from resync_handle_seq_match(), until their resync\nhandling in napi is fully completed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47215",
          "url": "https://www.suse.com/security/cve/CVE-2021-47215"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222704 for CVE-2021-47215",
          "url": "https://bugzilla.suse.com/1222704"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47215"
    },
    {
      "cve": "CVE-2021-47216",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47216"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: advansys: Fix kernel pointer leak\n\nPointers should be printed with %p or %px rather than cast to \u0027unsigned\nlong\u0027 and printed with %lx.\n\nChange %lx to %p to print the hashed pointer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47216",
          "url": "https://www.suse.com/security/cve/CVE-2021-47216"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222876 for CVE-2021-47216",
          "url": "https://bugzilla.suse.com/1222876"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47216"
    },
    {
      "cve": "CVE-2021-47217",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47217"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails\n\nCheck for a valid hv_vp_index array prior to derefencing hv_vp_index when\nsetting Hyper-V\u0027s TSC change callback.  If Hyper-V setup failed in\nhyperv_init(), the kernel will still report that it\u0027s running under\nHyper-V, but will have silently disabled nearly all functionality.\n\n  BUG: kernel NULL pointer dereference, address: 0000000000000010\n  #PF: supervisor read access in kernel mode\n  #PF: error_code(0x0000) - not-present page\n  PGD 0 P4D 0\n  Oops: 0000 [#1] SMP\n  CPU: 4 PID: 1 Comm: swapper/0 Not tainted 5.15.0-rc2+ #75\n  Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n  RIP: 0010:set_hv_tscchange_cb+0x15/0xa0\n  Code: \u003c8b\u003e 04 82 8b 15 12 17 85 01 48 c1 e0 20 48 0d ee 00 01 00 f6 c6 08\n  ...\n  Call Trace:\n   kvm_arch_init+0x17c/0x280\n   kvm_init+0x31/0x330\n   vmx_init+0xba/0x13a\n   do_one_initcall+0x41/0x1c0\n   kernel_init_freeable+0x1f2/0x23b\n   kernel_init+0x16/0x120\n   ret_from_fork+0x22/0x30",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47217",
          "url": "https://www.suse.com/security/cve/CVE-2021-47217"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222836 for CVE-2021-47217",
          "url": "https://bugzilla.suse.com/1222836"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47217"
    },
    {
      "cve": "CVE-2021-47218",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47218"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: fix NULL-pointer dereference when hashtab allocation fails\n\nWhen the hash table slot array allocation fails in hashtab_init(),\nh-\u003esize is left initialized with a non-zero value, but the h-\u003ehtable\npointer is NULL. This may then cause a NULL pointer dereference, since\nthe policydb code relies on the assumption that even after a failed\nhashtab_init(), hashtab_map() and hashtab_destroy() can be safely called\non it. Yet, these detect an empty hashtab only by looking at the size.\n\nFix this by making sure that hashtab_init() always leaves behind a valid\nempty hashtab when the allocation fails.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47218",
          "url": "https://www.suse.com/security/cve/CVE-2021-47218"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222791 for CVE-2021-47218",
          "url": "https://bugzilla.suse.com/1222791"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47218"
    },
    {
      "cve": "CVE-2021-47219",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-47219"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs()\n\nThe following issue was observed running syzkaller:\n\nBUG: KASAN: slab-out-of-bounds in memcpy include/linux/string.h:377 [inline]\nBUG: KASAN: slab-out-of-bounds in sg_copy_buffer+0x150/0x1c0 lib/scatterlist.c:831\nRead of size 2132 at addr ffff8880aea95dc8 by task syz-executor.0/9815\n\nCPU: 0 PID: 9815 Comm: syz-executor.0 Not tainted 4.19.202-00874-gfc0fe04215a9 #2\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1ubuntu1 04/01/2014\nCall Trace:\n __dump_stack lib/dump_stack.c:77 [inline]\n dump_stack+0xe4/0x14a lib/dump_stack.c:118\n print_address_description+0x73/0x280 mm/kasan/report.c:253\n kasan_report_error mm/kasan/report.c:352 [inline]\n kasan_report+0x272/0x370 mm/kasan/report.c:410\n memcpy+0x1f/0x50 mm/kasan/kasan.c:302\n memcpy include/linux/string.h:377 [inline]\n sg_copy_buffer+0x150/0x1c0 lib/scatterlist.c:831\n fill_from_dev_buffer+0x14f/0x340 drivers/scsi/scsi_debug.c:1021\n resp_report_tgtpgs+0x5aa/0x770 drivers/scsi/scsi_debug.c:1772\n schedule_resp+0x464/0x12f0 drivers/scsi/scsi_debug.c:4429\n scsi_debug_queuecommand+0x467/0x1390 drivers/scsi/scsi_debug.c:5835\n scsi_dispatch_cmd+0x3fc/0x9b0 drivers/scsi/scsi_lib.c:1896\n scsi_request_fn+0x1042/0x1810 drivers/scsi/scsi_lib.c:2034\n __blk_run_queue_uncond block/blk-core.c:464 [inline]\n __blk_run_queue+0x1a4/0x380 block/blk-core.c:484\n blk_execute_rq_nowait+0x1c2/0x2d0 block/blk-exec.c:78\n sg_common_write.isra.19+0xd74/0x1dc0 drivers/scsi/sg.c:847\n sg_write.part.23+0x6e0/0xd00 drivers/scsi/sg.c:716\n sg_write+0x64/0xa0 drivers/scsi/sg.c:622\n __vfs_write+0xed/0x690 fs/read_write.c:485\nkill_bdev:block_device:00000000e138492c\n vfs_write+0x184/0x4c0 fs/read_write.c:549\n ksys_write+0x107/0x240 fs/read_write.c:599\n do_syscall_64+0xc2/0x560 arch/x86/entry/common.c:293\n entry_SYSCALL_64_after_hwframe+0x49/0xbe\n\nWe get \u0027alen\u0027 from command its type is int. If userspace passes a large\nlength we will get a negative \u0027alen\u0027.\n\nSwitch n, alen, and rlen to u32.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-47219",
          "url": "https://www.suse.com/security/cve/CVE-2021-47219"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222824 for CVE-2021-47219",
          "url": "https://bugzilla.suse.com/1222824"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-47219"
    },
    {
      "cve": "CVE-2022-48631",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48631"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix bug in extents parsing when eh_entries == 0 and eh_depth \u003e 0\n\nWhen walking through an inode extents, the ext4_ext_binsearch_idx() function\nassumes that the extent header has been previously validated.  However, there\nare no checks that verify that the number of entries (eh-\u003eeh_entries) is\nnon-zero when depth is \u003e 0.  And this will lead to problems because the\nEXT_FIRST_INDEX() and EXT_LAST_INDEX() will return garbage and result in this:\n\n[  135.245946] ------------[ cut here ]------------\n[  135.247579] kernel BUG at fs/ext4/extents.c:2258!\n[  135.249045] invalid opcode: 0000 [#1] PREEMPT SMP\n[  135.250320] CPU: 2 PID: 238 Comm: tmp118 Not tainted 5.19.0-rc8+ #4\n[  135.252067] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.15.0-0-g2dd4b9b-rebuilt.opensuse.org 04/01/2014\n[  135.255065] RIP: 0010:ext4_ext_map_blocks+0xc20/0xcb0\n[  135.256475] Code:\n[  135.261433] RSP: 0018:ffffc900005939f8 EFLAGS: 00010246\n[  135.262847] RAX: 0000000000000024 RBX: ffffc90000593b70 RCX: 0000000000000023\n[  135.264765] RDX: ffff8880038e5f10 RSI: 0000000000000003 RDI: ffff8880046e922c\n[  135.266670] RBP: ffff8880046e9348 R08: 0000000000000001 R09: ffff888002ca580c\n[  135.268576] R10: 0000000000002602 R11: 0000000000000000 R12: 0000000000000024\n[  135.270477] R13: 0000000000000000 R14: 0000000000000024 R15: 0000000000000000\n[  135.272394] FS:  00007fdabdc56740(0000) GS:ffff88807dd00000(0000) knlGS:0000000000000000\n[  135.274510] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[  135.276075] CR2: 00007ffc26bd4f00 CR3: 0000000006261004 CR4: 0000000000170ea0\n[  135.277952] Call Trace:\n[  135.278635]  \u003cTASK\u003e\n[  135.279247]  ? preempt_count_add+0x6d/0xa0\n[  135.280358]  ? percpu_counter_add_batch+0x55/0xb0\n[  135.281612]  ? _raw_read_unlock+0x18/0x30\n[  135.282704]  ext4_map_blocks+0x294/0x5a0\n[  135.283745]  ? xa_load+0x6f/0xa0\n[  135.284562]  ext4_mpage_readpages+0x3d6/0x770\n[  135.285646]  read_pages+0x67/0x1d0\n[  135.286492]  ? folio_add_lru+0x51/0x80\n[  135.287441]  page_cache_ra_unbounded+0x124/0x170\n[  135.288510]  filemap_get_pages+0x23d/0x5a0\n[  135.289457]  ? path_openat+0xa72/0xdd0\n[  135.290332]  filemap_read+0xbf/0x300\n[  135.291158]  ? _raw_spin_lock_irqsave+0x17/0x40\n[  135.292192]  new_sync_read+0x103/0x170\n[  135.293014]  vfs_read+0x15d/0x180\n[  135.293745]  ksys_read+0xa1/0xe0\n[  135.294461]  do_syscall_64+0x3c/0x80\n[  135.295284]  entry_SYSCALL_64_after_hwframe+0x46/0xb0\n\nThis patch simply adds an extra check in __ext4_ext_check(), verifying that\neh_entries is not 0 when eh_depth is \u003e 0.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48631",
          "url": "https://www.suse.com/security/cve/CVE-2022-48631"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223475 for CVE-2022-48631",
          "url": "https://bugzilla.suse.com/1223475"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48631"
    },
    {
      "cve": "CVE-2022-48632",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48632"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction()\n\nmemcpy() is called in a loop while \u0027operation-\u003elength\u0027 upper bound\nis not checked and \u0027data_idx\u0027 also increments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48632",
          "url": "https://www.suse.com/security/cve/CVE-2022-48632"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223481 for CVE-2022-48632",
          "url": "https://bugzilla.suse.com/1223481"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48632"
    },
    {
      "cve": "CVE-2022-48634",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48634"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/gma500: Fix BUG: sleeping function called from invalid context errors\n\ngma_crtc_page_flip() was holding the event_lock spinlock while calling\ncrtc_funcs-\u003emode_set_base() which takes ww_mutex.\n\nThe only reason to hold event_lock is to clear gma_crtc-\u003epage_flip_event\non mode_set_base() errors.\n\nInstead unlock it after setting gma_crtc-\u003epage_flip_event and on\nerrors re-take the lock and clear gma_crtc-\u003epage_flip_event it\nit is still set.\n\nThis fixes the following WARN/stacktrace:\n\n[  512.122953] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:870\n[  512.123004] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 1253, name: gnome-shell\n[  512.123031] preempt_count: 1, expected: 0\n[  512.123048] RCU nest depth: 0, expected: 0\n[  512.123066] INFO: lockdep is turned off.\n[  512.123080] irq event stamp: 0\n[  512.123094] hardirqs last  enabled at (0): [\u003c0000000000000000\u003e] 0x0\n[  512.123134] hardirqs last disabled at (0): [\u003cffffffff8d0ec28c\u003e] copy_process+0x9fc/0x1de0\n[  512.123176] softirqs last  enabled at (0): [\u003cffffffff8d0ec28c\u003e] copy_process+0x9fc/0x1de0\n[  512.123207] softirqs last disabled at (0): [\u003c0000000000000000\u003e] 0x0\n[  512.123233] Preemption disabled at:\n[  512.123241] [\u003c0000000000000000\u003e] 0x0\n[  512.123275] CPU: 3 PID: 1253 Comm: gnome-shell Tainted: G        W         5.19.0+ #1\n[  512.123304] Hardware name: Packard Bell dot s/SJE01_CT, BIOS V1.10 07/23/2013\n[  512.123323] Call Trace:\n[  512.123346]  \u003cTASK\u003e\n[  512.123370]  dump_stack_lvl+0x5b/0x77\n[  512.123412]  __might_resched.cold+0xff/0x13a\n[  512.123458]  ww_mutex_lock+0x1e/0xa0\n[  512.123495]  psb_gem_pin+0x2c/0x150 [gma500_gfx]\n[  512.123601]  gma_pipe_set_base+0x76/0x240 [gma500_gfx]\n[  512.123708]  gma_crtc_page_flip+0x95/0x130 [gma500_gfx]\n[  512.123808]  drm_mode_page_flip_ioctl+0x57d/0x5d0\n[  512.123897]  ? drm_mode_cursor2_ioctl+0x10/0x10\n[  512.123936]  drm_ioctl_kernel+0xa1/0x150\n[  512.123984]  drm_ioctl+0x21f/0x420\n[  512.124025]  ? drm_mode_cursor2_ioctl+0x10/0x10\n[  512.124070]  ? rcu_read_lock_bh_held+0xb/0x60\n[  512.124104]  ? lock_release+0x1ef/0x2d0\n[  512.124161]  __x64_sys_ioctl+0x8d/0xd0\n[  512.124203]  do_syscall_64+0x58/0x80\n[  512.124239]  ? do_syscall_64+0x67/0x80\n[  512.124267]  ? trace_hardirqs_on_prepare+0x55/0xe0\n[  512.124300]  ? do_syscall_64+0x67/0x80\n[  512.124340]  ? rcu_read_lock_sched_held+0x10/0x80\n[  512.124377]  entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[  512.124411] RIP: 0033:0x7fcc4a70740f\n[  512.124442] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 \u003c89\u003e c2 3d 00 f0 ff ff 77 18 48 8b 44 24 18 64 48 2b 04 25 28 00 00\n[  512.124470] RSP: 002b:00007ffda73f5390 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n[  512.124503] RAX: ffffffffffffffda RBX: 000055cc9e474500 RCX: 00007fcc4a70740f\n[  512.124524] RDX: 00007ffda73f5420 RSI: 00000000c01864b0 RDI: 0000000000000009\n[  512.124544] RBP: 00007ffda73f5420 R08: 000055cc9c0b0cb0 R09: 0000000000000034\n[  512.124564] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000c01864b0\n[  512.124584] R13: 0000000000000009 R14: 000055cc9df484d0 R15: 000055cc9af5d0c0\n[  512.124647]  \u003c/TASK\u003e",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48634",
          "url": "https://www.suse.com/security/cve/CVE-2022-48634"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223501 for CVE-2022-48634",
          "url": "https://bugzilla.suse.com/1223501"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48634"
    },
    {
      "cve": "CVE-2022-48636",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48636"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup\n\nFix Oops in dasd_alias_get_start_dev() function caused by the pavgroup\npointer being NULL.\n\nThe pavgroup pointer is checked on the entrance of the function but\nwithout the lcu-\u003elock being held. Therefore there is a race window\nbetween dasd_alias_get_start_dev() and _lcu_update() which sets\npavgroup to NULL with the lcu-\u003elock held.\n\nFix by checking the pavgroup pointer with lcu-\u003elock held.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48636",
          "url": "https://www.suse.com/security/cve/CVE-2022-48636"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223512 for CVE-2022-48636",
          "url": "https://bugzilla.suse.com/1223512"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48636"
    },
    {
      "cve": "CVE-2022-48637",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48637"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt: prevent skb UAF after handing over to PTP worker\n\nWhen reading the timestamp is required bnxt_tx_int() hands\nover the ownership of the completed skb to the PTP worker.\nThe skb should not be used afterwards, as the worker may\nrun before the rest of our code and free the skb, leading\nto a use-after-free.\n\nSince dev_kfree_skb_any() accepts NULL make the loss of\nownership more obvious and set skb to NULL.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48637",
          "url": "https://www.suse.com/security/cve/CVE-2022-48637"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223517 for CVE-2022-48637",
          "url": "https://bugzilla.suse.com/1223517"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48637"
    },
    {
      "cve": "CVE-2022-48638",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48638"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncgroup: cgroup_get_from_id() must check the looked-up kn is a directory\n\ncgroup has to be one kernfs dir, otherwise kernel panic is caused,\nespecially cgroup id is provide from userspace.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48638",
          "url": "https://www.suse.com/security/cve/CVE-2022-48638"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223522 for CVE-2022-48638",
          "url": "https://bugzilla.suse.com/1223522"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48638"
    },
    {
      "cve": "CVE-2022-48639",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48639"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix possible refcount leak in tc_new_tfilter()\n\ntfilter_put need to be called to put the refount got by tp-\u003eops-\u003eget to\navoid possible refcount leak when chain-\u003etmplt_ops != NULL and\nchain-\u003etmplt_ops != tp-\u003eops.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48639",
          "url": "https://www.suse.com/security/cve/CVE-2022-48639"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223490 for CVE-2022-48639",
          "url": "https://bugzilla.suse.com/1223490"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48639"
    },
    {
      "cve": "CVE-2022-48640",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48640"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix NULL deref in bond_rr_gen_slave_id\n\nFix a NULL dereference of the struct bonding.rr_tx_counter member because\nif a bond is initially created with an initial mode != zero (Round Robin)\nthe memory required for the counter is never created and when the mode is\nchanged there is never any attempt to verify the memory is allocated upon\nswitching modes.\n\nThis causes the following Oops on an aarch64 machine:\n    [  334.686773] Unable to handle kernel paging request at virtual address ffff2c91ac905000\n    [  334.694703] Mem abort info:\n    [  334.697486]   ESR = 0x0000000096000004\n    [  334.701234]   EC = 0x25: DABT (current EL), IL = 32 bits\n    [  334.706536]   SET = 0, FnV = 0\n    [  334.709579]   EA = 0, S1PTW = 0\n    [  334.712719]   FSC = 0x04: level 0 translation fault\n    [  334.717586] Data abort info:\n    [  334.720454]   ISV = 0, ISS = 0x00000004\n    [  334.724288]   CM = 0, WnR = 0\n    [  334.727244] swapper pgtable: 4k pages, 48-bit VAs, pgdp=000008044d662000\n    [  334.733944] [ffff2c91ac905000] pgd=0000000000000000, p4d=0000000000000000\n    [  334.740734] Internal error: Oops: 96000004 [#1] SMP\n    [  334.745602] Modules linked in: bonding tls veth rfkill sunrpc arm_spe_pmu vfat fat acpi_ipmi ipmi_ssif ixgbe igb i40e mdio ipmi_devintf ipmi_msghandler arm_cmn arm_dsu_pmu cppc_cpufreq acpi_tad fuse zram crct10dif_ce ast ghash_ce sbsa_gwdt nvme drm_vram_helper drm_ttm_helper nvme_core ttm xgene_hwmon\n    [  334.772217] CPU: 7 PID: 2214 Comm: ping Not tainted 6.0.0-rc4-00133-g64ae13ed4784 #4\n    [  334.779950] Hardware name: GIGABYTE R272-P31-00/MP32-AR1-00, BIOS F18v (SCP: 1.08.20211002) 12/01/2021\n    [  334.789244] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n    [  334.796196] pc : bond_rr_gen_slave_id+0x40/0x124 [bonding]\n    [  334.801691] lr : bond_xmit_roundrobin_slave_get+0x38/0xdc [bonding]\n    [  334.807962] sp : ffff8000221733e0\n    [  334.811265] x29: ffff8000221733e0 x28: ffffdbac8572d198 x27: ffff80002217357c\n    [  334.818392] x26: 000000000000002a x25: ffffdbacb33ee000 x24: ffff07ff980fa000\n    [  334.825519] x23: ffffdbacb2e398ba x22: ffff07ff98102000 x21: ffff07ff981029c0\n    [  334.832646] x20: 0000000000000001 x19: ffff07ff981029c0 x18: 0000000000000014\n    [  334.839773] x17: 0000000000000000 x16: ffffdbacb1004364 x15: 0000aaaabe2f5a62\n    [  334.846899] x14: ffff07ff8e55d968 x13: ffff07ff8e55db30 x12: 0000000000000000\n    [  334.854026] x11: ffffdbacb21532e8 x10: 0000000000000001 x9 : ffffdbac857178ec\n    [  334.861153] x8 : ffff07ff9f6e5a28 x7 : 0000000000000000 x6 : 000000007c2b3742\n    [  334.868279] x5 : ffff2c91ac905000 x4 : ffff2c91ac905000 x3 : ffff07ff9f554400\n    [  334.875406] x2 : ffff2c91ac905000 x1 : 0000000000000001 x0 : ffff07ff981029c0\n    [  334.882532] Call trace:\n    [  334.884967]  bond_rr_gen_slave_id+0x40/0x124 [bonding]\n    [  334.890109]  bond_xmit_roundrobin_slave_get+0x38/0xdc [bonding]\n    [  334.896033]  __bond_start_xmit+0x128/0x3a0 [bonding]\n    [  334.901001]  bond_start_xmit+0x54/0xb0 [bonding]\n    [  334.905622]  dev_hard_start_xmit+0xb4/0x220\n    [  334.909798]  __dev_queue_xmit+0x1a0/0x720\n    [  334.913799]  arp_xmit+0x3c/0xbc\n    [  334.916932]  arp_send_dst+0x98/0xd0\n    [  334.920410]  arp_solicit+0xe8/0x230\n    [  334.923888]  neigh_probe+0x60/0xb0\n    [  334.927279]  __neigh_event_send+0x3b0/0x470\n    [  334.931453]  neigh_resolve_output+0x70/0x90\n    [  334.935626]  ip_finish_output2+0x158/0x514\n    [  334.939714]  __ip_finish_output+0xac/0x1a4\n    [  334.943800]  ip_finish_output+0x40/0xfc\n    [  334.947626]  ip_output+0xf8/0x1a4\n    [  334.950931]  ip_send_skb+0x5c/0x100\n    [  334.954410]  ip_push_pending_frames+0x3c/0x60\n    [  334.958758]  raw_sendmsg+0x458/0x6d0\n    [  334.962325]  inet_sendmsg+0x50/0x80\n    [  334.965805]  sock_sendmsg+0x60/0x6c\n    [  334.969286]  __sys_sendto+0xc8/0x134\n    [  334.972853]  __arm64_sys_sendto+0x34/0x4c\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48640",
          "url": "https://www.suse.com/security/cve/CVE-2022-48640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223499 for CVE-2022-48640",
          "url": "https://bugzilla.suse.com/1223499"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48640"
    },
    {
      "cve": "CVE-2022-48642",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48642"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: fix percpu memory leak at nf_tables_addchain()\n\nIt seems to me that percpu memory for chain stats started leaking since\ncommit 3bc158f8d0330f0a (\"netfilter: nf_tables: map basechain priority to\nhardware priority\") when nft_chain_offload_priority() returned an error.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48642",
          "url": "https://www.suse.com/security/cve/CVE-2022-48642"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223478 for CVE-2022-48642",
          "url": "https://bugzilla.suse.com/1223478"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48642"
    },
    {
      "cve": "CVE-2022-48644",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48644"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: avoid disabling offload when it was never enabled\n\nIn an incredibly strange API design decision, qdisc-\u003edestroy() gets\ncalled even if qdisc-\u003einit() never succeeded, not exclusively since\ncommit 87b60cfacf9f (\"net_sched: fix error recovery at qdisc creation\"),\nbut apparently also earlier (in the case of qdisc_create_dflt()).\n\nThe taprio qdisc does not fully acknowledge this when it attempts full\noffload, because it starts off with q-\u003eflags = TAPRIO_FLAGS_INVALID in\ntaprio_init(), then it replaces q-\u003eflags with TCA_TAPRIO_ATTR_FLAGS\nparsed from netlink (in taprio_change(), tail called from taprio_init()).\n\nBut in taprio_destroy(), we call taprio_disable_offload(), and this\ndetermines what to do based on FULL_OFFLOAD_IS_ENABLED(q-\u003eflags).\n\nBut looking at the implementation of FULL_OFFLOAD_IS_ENABLED()\n(a bitwise check of bit 1 in q-\u003eflags), it is invalid to call this macro\non q-\u003eflags when it contains TAPRIO_FLAGS_INVALID, because that is set\nto U32_MAX, and therefore FULL_OFFLOAD_IS_ENABLED() will return true on\nan invalid set of flags.\n\nAs a result, it is possible to crash the kernel if user space forces an\nerror between setting q-\u003eflags = TAPRIO_FLAGS_INVALID, and the calling\nof taprio_enable_offload(). This is because drivers do not expect the\noffload to be disabled when it was never enabled.\n\nThe error that we force here is to attach taprio as a non-root qdisc,\nbut instead as child of an mqprio root qdisc:\n\n$ tc qdisc add dev swp0 root handle 1: \\\n\tmqprio num_tc 8 map 0 1 2 3 4 5 6 7 \\\n\tqueues 1@0 1@1 1@2 1@3 1@4 1@5 1@6 1@7 hw 0\n$ tc qdisc replace dev swp0 parent 1:1 \\\n\ttaprio num_tc 8 map 0 1 2 3 4 5 6 7 \\\n\tqueues 1@0 1@1 1@2 1@3 1@4 1@5 1@6 1@7 base-time 0 \\\n\tsched-entry S 0x7f 990000 sched-entry S 0x80 100000 \\\n\tflags 0x0 clockid CLOCK_TAI\nUnable to handle kernel paging request at virtual address fffffffffffffff8\n[fffffffffffffff8] pgd=0000000000000000, p4d=0000000000000000\nInternal error: Oops: 96000004 [#1] PREEMPT SMP\nCall trace:\n taprio_dump+0x27c/0x310\n vsc9959_port_setup_tc+0x1f4/0x460\n felix_port_setup_tc+0x24/0x3c\n dsa_slave_setup_tc+0x54/0x27c\n taprio_disable_offload.isra.0+0x58/0xe0\n taprio_destroy+0x80/0x104\n qdisc_create+0x240/0x470\n tc_modify_qdisc+0x1fc/0x6b0\n rtnetlink_rcv_msg+0x12c/0x390\n netlink_rcv_skb+0x5c/0x130\n rtnetlink_rcv+0x1c/0x2c\n\nFix this by keeping track of the operations we made, and undo the\noffload only if we actually did it.\n\nI\u0027ve added \"bool offloaded\" inside a 4 byte hole between \"int clockid\"\nand \"atomic64_t picos_per_byte\". Now the first cache line looks like\nbelow:\n\n$ pahole -C taprio_sched net/sched/sch_taprio.o\nstruct taprio_sched {\n        struct Qdisc * *           qdiscs;               /*     0     8 */\n        struct Qdisc *             root;                 /*     8     8 */\n        u32                        flags;                /*    16     4 */\n        enum tk_offsets            tk_offset;            /*    20     4 */\n        int                        clockid;              /*    24     4 */\n        bool                       offloaded;            /*    28     1 */\n\n        /* XXX 3 bytes hole, try to pack */\n\n        atomic64_t                 picos_per_byte;       /*    32     0 */\n\n        /* XXX 8 bytes hole, try to pack */\n\n        spinlock_t                 current_entry_lock;   /*    40     0 */\n\n        /* XXX 8 bytes hole, try to pack */\n\n        struct sched_entry *       current_entry;        /*    48     8 */\n        struct sched_gate_list *   oper_sched;           /*    56     8 */\n        /* --- cacheline 1 boundary (64 bytes) --- */",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48644",
          "url": "https://www.suse.com/security/cve/CVE-2022-48644"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223511 for CVE-2022-48644",
          "url": "https://bugzilla.suse.com/1223511"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48644"
    },
    {
      "cve": "CVE-2022-48646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc/siena: fix null pointer dereference in efx_hard_start_xmit\n\nLike in previous patch for sfc, prevent potential (but unlikely) NULL\npointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48646",
          "url": "https://www.suse.com/security/cve/CVE-2022-48646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223502 for CVE-2022-48646",
          "url": "https://bugzilla.suse.com/1223502"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48646"
    },
    {
      "cve": "CVE-2022-48647",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48647"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: fix TX channel offset when using legacy interrupts\n\nIn legacy interrupt mode the tx_channel_offset was hardcoded to 1, but\nthat\u0027s not correct if efx_sepparate_tx_channels is false. In that case,\nthe offset is 0 because the tx queues are in the single existing channel\nat index 0, together with the rx queue.\n\nWithout this fix, as soon as you try to send any traffic, it tries to\nget the tx queues from an uninitialized channel getting these errors:\n  WARNING: CPU: 1 PID: 0 at drivers/net/ethernet/sfc/tx.c:540 efx_hard_start_xmit+0x12e/0x170 [sfc]\n  [...]\n  RIP: 0010:efx_hard_start_xmit+0x12e/0x170 [sfc]\n  [...]\n  Call Trace:\n   \u003cIRQ\u003e\n   dev_hard_start_xmit+0xd7/0x230\n   sch_direct_xmit+0x9f/0x360\n   __dev_queue_xmit+0x890/0xa40\n  [...]\n  BUG: unable to handle kernel NULL pointer dereference at 0000000000000020\n  [...]\n  RIP: 0010:efx_hard_start_xmit+0x153/0x170 [sfc]\n  [...]\n  Call Trace:\n   \u003cIRQ\u003e\n   dev_hard_start_xmit+0xd7/0x230\n   sch_direct_xmit+0x9f/0x360\n   __dev_queue_xmit+0x890/0xa40\n  [...]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48647",
          "url": "https://www.suse.com/security/cve/CVE-2022-48647"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223519 for CVE-2022-48647",
          "url": "https://bugzilla.suse.com/1223519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48647"
    },
    {
      "cve": "CVE-2022-48648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: fix null pointer dereference in efx_hard_start_xmit\n\nTrying to get the channel from the tx_queue variable here is wrong\nbecause we can only be here if tx_queue is NULL, so we shouldn\u0027t\ndereference it. As the above comment in the code says, this is very\nunlikely to happen, but it\u0027s wrong anyway so let\u0027s fix it.\n\nI hit this issue because of a different bug that caused tx_queue to be\nNULL. If that happens, this is the error message that we get here:\n  BUG: unable to handle kernel NULL pointer dereference at 0000000000000020\n  [...]\n  RIP: 0010:efx_hard_start_xmit+0x153/0x170 [sfc]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48648",
          "url": "https://www.suse.com/security/cve/CVE-2022-48648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223503 for CVE-2022-48648",
          "url": "https://bugzilla.suse.com/1223503"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48648"
    },
    {
      "cve": "CVE-2022-48650",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48650"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts()\n\nCommit 8f394da36a36 (\"scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG\")\nmade the __qlt_24xx_handle_abts() function return early if\ntcm_qla2xxx_find_cmd_by_tag() didn\u0027t find a command, but it missed to clean\nup the allocated memory for the management command.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48650",
          "url": "https://www.suse.com/security/cve/CVE-2022-48650"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223509 for CVE-2022-48650",
          "url": "https://bugzilla.suse.com/1223509"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48650"
    },
    {
      "cve": "CVE-2022-48651",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48651"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvlan: Fix out-of-bound bugs caused by unset skb-\u003emac_header\n\nIf an AF_PACKET socket is used to send packets through ipvlan and the\ndefault xmit function of the AF_PACKET socket is changed from\ndev_queue_xmit() to packet_direct_xmit() via setsockopt() with the option\nname of PACKET_QDISC_BYPASS, the skb-\u003emac_header may not be reset and\nremains as the initial value of 65535, this may trigger slab-out-of-bounds\nbugs as following:\n\n=================================================================\nUG: KASAN: slab-out-of-bounds in ipvlan_xmit_mode_l2+0xdb/0x330 [ipvlan]\nPU: 2 PID: 1768 Comm: raw_send Kdump: loaded Not tainted 6.0.0-rc4+ #6\nardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-1.fc33\nall Trace:\nprint_address_description.constprop.0+0x1d/0x160\nprint_report.cold+0x4f/0x112\nkasan_report+0xa3/0x130\nipvlan_xmit_mode_l2+0xdb/0x330 [ipvlan]\nipvlan_start_xmit+0x29/0xa0 [ipvlan]\n__dev_direct_xmit+0x2e2/0x380\npacket_direct_xmit+0x22/0x60\npacket_snd+0x7c9/0xc40\nsock_sendmsg+0x9a/0xa0\n__sys_sendto+0x18a/0x230\n__x64_sys_sendto+0x74/0x90\ndo_syscall_64+0x3b/0x90\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe root cause is:\n  1. packet_snd() only reset skb-\u003emac_header when sock-\u003etype is SOCK_RAW\n     and skb-\u003eprotocol is not specified as in packet_parse_headers()\n\n  2. packet_direct_xmit() doesn\u0027t reset skb-\u003emac_header as dev_queue_xmit()\n\nIn this case, skb-\u003emac_header is 65535 when ipvlan_xmit_mode_l2() is\ncalled. So when ipvlan_xmit_mode_l2() gets mac header with eth_hdr() which\nuse \"skb-\u003ehead + skb-\u003emac_header\", out-of-bound access occurs.\n\nThis patch replaces eth_hdr() with skb_eth_hdr() in ipvlan_xmit_mode_l2()\nand reset mac header in multicast to solve this out-of-bound bug.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48651",
          "url": "https://www.suse.com/security/cve/CVE-2022-48651"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223513 for CVE-2022-48651",
          "url": "https://bugzilla.suse.com/1223513"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223514 for CVE-2022-48651",
          "url": "https://bugzilla.suse.com/1223514"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48651"
    },
    {
      "cve": "CVE-2022-48652",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48652"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix crash by keep old cfg when update TCs more than queues\n\nThere are problems if allocated queues less than Traffic Classes.\n\nCommit a632b2a4c920 (\"ice: ethtool: Prohibit improper channel config\nfor DCB\") already disallow setting less queues than TCs.\n\nAnother case is if we first set less queues, and later update more TCs\nconfig due to LLDP, ice_vsi_cfg_tc() will failed but left dirty\nnum_txq/rxq and tc_cfg in vsi, that will cause invalid pointer access.\n\n[   95.968089] ice 0000:3b:00.1: More TCs defined than queues/rings allocated.\n[   95.968092] ice 0000:3b:00.1: Trying to use more Rx queues (8), than were allocated (1)!\n[   95.968093] ice 0000:3b:00.1: Failed to config TC for VSI index: 0\n[   95.969621] general protection fault: 0000 [#1] SMP NOPTI\n[   95.969705] CPU: 1 PID: 58405 Comm: lldpad Kdump: loaded Tainted: G     U  W  O     --------- -t - 4.18.0 #1\n[   95.969867] Hardware name: O.E.M/BC11SPSCB10, BIOS 8.23 12/30/2021\n[   95.969992] RIP: 0010:devm_kmalloc+0xa/0x60\n[   95.970052] Code: 5c ff ff ff 31 c0 5b 5d 41 5c c3 b8 f4 ff ff ff eb f4 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 89 d1 \u003c8b\u003e 97 60 02 00 00 48 8d 7e 18 48 39 f7 72 3f 55 89 ce 53 48 8b 4c\n[   95.970344] RSP: 0018:ffffc9003f553888 EFLAGS: 00010206\n[   95.970425] RAX: dead000000000200 RBX: ffffea003c425b00 RCX: 00000000006080c0\n[   95.970536] RDX: 00000000006080c0 RSI: 0000000000000200 RDI: dead000000000200\n[   95.970648] RBP: dead000000000200 R08: 00000000000463c0 R09: ffff888ffa900000\n[   95.970760] R10: 0000000000000000 R11: 0000000000000002 R12: ffff888ff6b40100\n[   95.970870] R13: ffff888ff6a55018 R14: 0000000000000000 R15: ffff888ff6a55460\n[   95.970981] FS:  00007f51b7d24700(0000) GS:ffff88903ee80000(0000) knlGS:0000000000000000\n[   95.971108] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[   95.971197] CR2: 00007fac5410d710 CR3: 0000000f2c1de002 CR4: 00000000007606e0\n[   95.971309] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[   95.971419] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[   95.971530] PKRU: 55555554\n[   95.971573] Call Trace:\n[   95.971622]  ice_setup_rx_ring+0x39/0x110 [ice]\n[   95.971695]  ice_vsi_setup_rx_rings+0x54/0x90 [ice]\n[   95.971774]  ice_vsi_open+0x25/0x120 [ice]\n[   95.971843]  ice_open_internal+0xb8/0x1f0 [ice]\n[   95.971919]  ice_ena_vsi+0x4f/0xd0 [ice]\n[   95.971987]  ice_dcb_ena_dis_vsi.constprop.5+0x29/0x90 [ice]\n[   95.972082]  ice_pf_dcb_cfg+0x29a/0x380 [ice]\n[   95.972154]  ice_dcbnl_setets+0x174/0x1b0 [ice]\n[   95.972220]  dcbnl_ieee_set+0x89/0x230\n[   95.972279]  ? dcbnl_ieee_del+0x150/0x150\n[   95.972341]  dcb_doit+0x124/0x1b0\n[   95.972392]  rtnetlink_rcv_msg+0x243/0x2f0\n[   95.972457]  ? dcb_doit+0x14d/0x1b0\n[   95.972510]  ? __kmalloc_node_track_caller+0x1d3/0x280\n[   95.972591]  ? rtnl_calcit.isra.31+0x100/0x100\n[   95.972661]  netlink_rcv_skb+0xcf/0xf0\n[   95.972720]  netlink_unicast+0x16d/0x220\n[   95.972781]  netlink_sendmsg+0x2ba/0x3a0\n[   95.975891]  sock_sendmsg+0x4c/0x50\n[   95.979032]  ___sys_sendmsg+0x2e4/0x300\n[   95.982147]  ? kmem_cache_alloc+0x13e/0x190\n[   95.985242]  ? __wake_up_common_lock+0x79/0x90\n[   95.988338]  ? __check_object_size+0xac/0x1b0\n[   95.991440]  ? _copy_to_user+0x22/0x30\n[   95.994539]  ? move_addr_to_user+0xbb/0xd0\n[   95.997619]  ? __sys_sendmsg+0x53/0x80\n[   96.000664]  __sys_sendmsg+0x53/0x80\n[   96.003747]  do_syscall_64+0x5b/0x1d0\n[   96.006862]  entry_SYSCALL_64_after_hwframe+0x65/0xca\n\nOnly update num_txq/rxq when passed check, and restore tc_cfg if setup\nqueue map failed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48652",
          "url": "https://www.suse.com/security/cve/CVE-2022-48652"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223520 for CVE-2022-48652",
          "url": "https://bugzilla.suse.com/1223520"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48652"
    },
    {
      "cve": "CVE-2022-48653",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48653"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Don\u0027t double unplug aux on peer initiated reset\n\nIn the IDC callback that is accessed when the aux drivers request a reset,\nthe function to unplug the aux devices is called.  This function is also\ncalled in the ice_prepare_for_reset function. This double call is causing\na \"scheduling while atomic\" BUG.\n\n[  662.676430] ice 0000:4c:00.0 rocep76s0: cqp opcode = 0x1 maj_err_code = 0xffff min_err_code = 0x8003\n\n[  662.676609] ice 0000:4c:00.0 rocep76s0: [Modify QP Cmd Error][op_code=8] status=-29 waiting=1 completion_err=1 maj=0xffff min=0x8003\n\n[  662.815006] ice 0000:4c:00.0 rocep76s0: ICE OICR event notification: oicr = 0x10000003\n\n[  662.815014] ice 0000:4c:00.0 rocep76s0: critical PE Error, GLPE_CRITERR=0x00011424\n\n[  662.815017] ice 0000:4c:00.0 rocep76s0: Requesting a reset\n\n[  662.815475] BUG: scheduling while atomic: swapper/37/0/0x00010002\n\n[  662.815475] BUG: scheduling while atomic: swapper/37/0/0x00010002\n[  662.815477] Modules linked in: rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs rfkill 8021q garp mrp stp llc vfat fat rpcrdma intel_rapl_msr intel_rapl_common sunrpc i10nm_edac rdma_ucm nfit ib_srpt libnvdimm ib_isert iscsi_target_mod x86_pkg_temp_thermal intel_powerclamp coretemp target_core_mod snd_hda_intel ib_iser snd_intel_dspcfg libiscsi snd_intel_sdw_acpi scsi_transport_iscsi kvm_intel iTCO_wdt rdma_cm snd_hda_codec kvm iw_cm ipmi_ssif iTCO_vendor_support snd_hda_core irqbypass crct10dif_pclmul crc32_pclmul ghash_clmulni_intel snd_hwdep snd_seq snd_seq_device rapl snd_pcm snd_timer isst_if_mbox_pci pcspkr isst_if_mmio irdma intel_uncore idxd acpi_ipmi joydev isst_if_common snd mei_me idxd_bus ipmi_si soundcore i2c_i801 mei ipmi_devintf i2c_smbus i2c_ismt ipmi_msghandler acpi_power_meter acpi_pad rv(OE) ib_uverbs ib_cm ib_core xfs libcrc32c ast i2c_algo_bit drm_vram_helper drm_kms_helper syscopyarea sysfillrect sysimgblt fb_sys_fops drm_ttm_helpe\n r ttm\n[  662.815546]  nvme nvme_core ice drm crc32c_intel i40e t10_pi wmi pinctrl_emmitsburg dm_mirror dm_region_hash dm_log dm_mod fuse\n[  662.815557] Preemption disabled at:\n[  662.815558] [\u003c0000000000000000\u003e] 0x0\n[  662.815563] CPU: 37 PID: 0 Comm: swapper/37 Kdump: loaded Tainted: G S         OE     5.17.1 #2\n[  662.815566] Hardware name: Intel Corporation D50DNP/D50DNP, BIOS SE5C6301.86B.6624.D18.2111021741 11/02/2021\n[  662.815568] Call Trace:\n[  662.815572]  \u003cIRQ\u003e\n[  662.815574]  dump_stack_lvl+0x33/0x42\n[  662.815581]  __schedule_bug.cold.147+0x7d/0x8a\n[  662.815588]  __schedule+0x798/0x990\n[  662.815595]  schedule+0x44/0xc0\n[  662.815597]  schedule_preempt_disabled+0x14/0x20\n[  662.815600]  __mutex_lock.isra.11+0x46c/0x490\n[  662.815603]  ? __ibdev_printk+0x76/0xc0 [ib_core]\n[  662.815633]  device_del+0x37/0x3d0\n[  662.815639]  ice_unplug_aux_dev+0x1a/0x40 [ice]\n[  662.815674]  ice_schedule_reset+0x3c/0xd0 [ice]\n[  662.815693]  irdma_iidc_event_handler.cold.7+0xb6/0xd3 [irdma]\n[  662.815712]  ? bitmap_find_next_zero_area_off+0x45/0xa0\n[  662.815719]  ice_send_event_to_aux+0x54/0x70 [ice]\n[  662.815741]  ice_misc_intr+0x21d/0x2d0 [ice]\n[  662.815756]  __handle_irq_event_percpu+0x4c/0x180\n[  662.815762]  handle_irq_event_percpu+0xf/0x40\n[  662.815764]  handle_irq_event+0x34/0x60\n[  662.815766]  handle_edge_irq+0x9a/0x1c0\n[  662.815770]  __common_interrupt+0x62/0x100\n[  662.815774]  common_interrupt+0xb4/0xd0\n[  662.815779]  \u003c/IRQ\u003e\n[  662.815780]  \u003cTASK\u003e\n[  662.815780]  asm_common_interrupt+0x1e/0x40\n[  662.815785] RIP: 0010:cpuidle_enter_state+0xd6/0x380\n[  662.815789] Code: 49 89 c4 0f 1f 44 00 00 31 ff e8 65 d7 95 ff 45 84 ff 74 12 9c 58 f6 c4 02 0f 85 64 02 00 00 31 ff e8 ae c5 9c ff fb 45 85 f6 \u003c0f\u003e 88 12 01 00 00 49 63 d6 4c 2b 24 24 48 8d 04 52 48 8d 04 82 49\n[  662.815791] RSP: 0018:ff2c2c4f18edbe80 EFLAGS: 00000202\n[  662.815793] RAX: ff280805df140000 RBX: 0000000000000002 RCX: 000000000000001f\n[  662.815795] RDX: 0000009a52da2d08 R\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48653",
          "url": "https://www.suse.com/security/cve/CVE-2022-48653"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223474 for CVE-2022-48653",
          "url": "https://bugzilla.suse.com/1223474"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48653"
    },
    {
      "cve": "CVE-2022-48654",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48654"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()\n\nnf_osf_find() incorrectly returns true on mismatch, this leads to\ncopying uninitialized memory area in nft_osf which can be used to leak\nstale kernel stack data to userspace.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48654",
          "url": "https://www.suse.com/security/cve/CVE-2022-48654"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223482 for CVE-2022-48654",
          "url": "https://bugzilla.suse.com/1223482"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48654"
    },
    {
      "cve": "CVE-2022-48655",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48655"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Harden accesses to the reset domains\n\nAccessing reset domains descriptors by the index upon the SCMI drivers\nrequests through the SCMI reset operations interface can potentially\nlead to out-of-bound violations if the SCMI driver misbehave.\n\nAdd an internal consistency check before any such domains descriptors\naccesses.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48655",
          "url": "https://www.suse.com/security/cve/CVE-2022-48655"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223477 for CVE-2022-48655",
          "url": "https://bugzilla.suse.com/1223477"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48655"
    },
    {
      "cve": "CVE-2022-48656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: ti: k3-udma-private: Fix refcount leak bug in of_xudma_dev_get()\n\nWe should call of_node_put() for the reference returned by\nof_parse_phandle() in fail path or when it is not used anymore.\nHere we only need to move the of_node_put() before the check.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48656",
          "url": "https://www.suse.com/security/cve/CVE-2022-48656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223479 for CVE-2022-48656",
          "url": "https://bugzilla.suse.com/1223479"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48656"
    },
    {
      "cve": "CVE-2022-48657",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48657"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: topology: fix possible overflow in amu_fie_setup()\n\ncpufreq_get_hw_max_freq() returns max frequency in kHz as *unsigned int*,\nwhile freq_inv_set_max_ratio() gets passed this frequency in Hz as \u0027u64\u0027.\nMultiplying max frequency by 1000 can potentially result in overflow --\nmultiplying by 1000ULL instead should avoid that...\n\nFound by Linux Verification Center (linuxtesting.org) with the SVACE static\nanalysis tool.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48657",
          "url": "https://www.suse.com/security/cve/CVE-2022-48657"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223484 for CVE-2022-48657",
          "url": "https://bugzilla.suse.com/1223484"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48657"
    },
    {
      "cve": "CVE-2022-48658",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48658"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context.\n\nCommit 5a836bf6b09f (\"mm: slub: move flush_cpu_slab() invocations\n__free_slab() invocations out of IRQ context\") moved all flush_cpu_slab()\ninvocations to the global workqueue to avoid a problem related\nwith deactivate_slab()/__free_slab() being called from an IRQ context\non PREEMPT_RT kernels.\n\nWhen the flush_all_cpu_locked() function is called from a task context\nit may happen that a workqueue with WQ_MEM_RECLAIM bit set ends up\nflushing the global workqueue, this will cause a dependency issue.\n\n workqueue: WQ_MEM_RECLAIM nvme-delete-wq:nvme_delete_ctrl_work [nvme_core]\n   is flushing !WQ_MEM_RECLAIM events:flush_cpu_slab\n WARNING: CPU: 37 PID: 410 at kernel/workqueue.c:2637\n   check_flush_dependency+0x10a/0x120\n Workqueue: nvme-delete-wq nvme_delete_ctrl_work [nvme_core]\n RIP: 0010:check_flush_dependency+0x10a/0x120[  453.262125] Call Trace:\n __flush_work.isra.0+0xbf/0x220\n ? __queue_work+0x1dc/0x420\n flush_all_cpus_locked+0xfb/0x120\n __kmem_cache_shutdown+0x2b/0x320\n kmem_cache_destroy+0x49/0x100\n bioset_exit+0x143/0x190\n blk_release_queue+0xb9/0x100\n kobject_cleanup+0x37/0x130\n nvme_fc_ctrl_free+0xc6/0x150 [nvme_fc]\n nvme_free_ctrl+0x1ac/0x2b0 [nvme_core]\n\nFix this bug by creating a workqueue for the flush operation with\nthe WQ_MEM_RECLAIM bit set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48658",
          "url": "https://www.suse.com/security/cve/CVE-2022-48658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223496 for CVE-2022-48658",
          "url": "https://bugzilla.suse.com/1223496"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48658"
    },
    {
      "cve": "CVE-2022-48659",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48659"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: fix to return errno if kmalloc() fails\n\nIn create_unique_id(), kmalloc(, GFP_KERNEL) can fail due to\nout-of-memory, if it fails, return errno correctly rather than\ntriggering panic via BUG_ON();\n\nkernel BUG at mm/slub.c:5893!\nInternal error: Oops - BUG: 0 [#1] PREEMPT SMP\n\nCall trace:\n sysfs_slab_add+0x258/0x260 mm/slub.c:5973\n __kmem_cache_create+0x60/0x118 mm/slub.c:4899\n create_cache mm/slab_common.c:229 [inline]\n kmem_cache_create_usercopy+0x19c/0x31c mm/slab_common.c:335\n kmem_cache_create+0x1c/0x28 mm/slab_common.c:390\n f2fs_kmem_cache_create fs/f2fs/f2fs.h:2766 [inline]\n f2fs_init_xattr_caches+0x78/0xb4 fs/f2fs/xattr.c:808\n f2fs_fill_super+0x1050/0x1e0c fs/f2fs/super.c:4149\n mount_bdev+0x1b8/0x210 fs/super.c:1400\n f2fs_mount+0x44/0x58 fs/f2fs/super.c:4512\n legacy_get_tree+0x30/0x74 fs/fs_context.c:610\n vfs_get_tree+0x40/0x140 fs/super.c:1530\n do_new_mount+0x1dc/0x4e4 fs/namespace.c:3040\n path_mount+0x358/0x914 fs/namespace.c:3370\n do_mount fs/namespace.c:3383 [inline]\n __do_sys_mount fs/namespace.c:3591 [inline]\n __se_sys_mount fs/namespace.c:3568 [inline]\n __arm64_sys_mount+0x2f8/0x408 fs/namespace.c:3568",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48659",
          "url": "https://www.suse.com/security/cve/CVE-2022-48659"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223498 for CVE-2022-48659",
          "url": "https://bugzilla.suse.com/1223498"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48659"
    },
    {
      "cve": "CVE-2022-48660",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48660"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: cdev: Set lineevent_state::irq after IRQ register successfully\n\nWhen running gpio test on nxp-ls1028 platform with below command\ngpiomon --num-events=3 --rising-edge gpiochip1 25\nThere will be a warning trace as below:\nCall trace:\nfree_irq+0x204/0x360\nlineevent_free+0x64/0x70\ngpio_ioctl+0x598/0x6a0\n__arm64_sys_ioctl+0xb4/0x100\ninvoke_syscall+0x5c/0x130\n......\nel0t_64_sync+0x1a0/0x1a4\nThe reason of this issue is that calling request_threaded_irq()\nfunction failed, and then lineevent_free() is invoked to release\nthe resource. Since the lineevent_state::irq was already set, so\nthe subsequent invocation of free_irq() would trigger the above\nwarning call trace. To fix this issue, set the lineevent_state::irq\nafter the IRQ register successfully.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48660",
          "url": "https://www.suse.com/security/cve/CVE-2022-48660"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223487 for CVE-2022-48660",
          "url": "https://bugzilla.suse.com/1223487"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48660"
    },
    {
      "cve": "CVE-2022-48662",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48662"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Really move i915_gem_context.link under ref protection\n\ni915_perf assumes that it can use the i915_gem_context reference to\nprotect its i915-\u003egem.contexts.list iteration. However, this requires\nthat we do not remove the context from the list until after we drop the\nfinal reference and release the struct. If, as currently, we remove the\ncontext from the list during context_close(), the link.next pointer may\nbe poisoned while we are holding the context reference and cause a GPF:\n\n[ 4070.573157] i915 0000:00:02.0: [drm:i915_perf_open_ioctl [i915]] filtering on ctx_id=0x1fffff ctx_id_mask=0x1fffff\n[ 4070.574881] general protection fault, probably for non-canonical address 0xdead000000000100: 0000 [#1] PREEMPT SMP\n[ 4070.574897] CPU: 1 PID: 284392 Comm: amd_performance Tainted: G            E     5.17.9 #180\n[ 4070.574903] Hardware name: Intel Corporation NUC7i5BNK/NUC7i5BNB, BIOS BNKBL357.86A.0052.2017.0918.1346 09/18/2017\n[ 4070.574907] RIP: 0010:oa_configure_all_contexts.isra.0+0x222/0x350 [i915]\n[ 4070.574982] Code: 08 e8 32 6e 10 e1 4d 8b 6d 50 b8 ff ff ff ff 49 83 ed 50 f0 41 0f c1 04 24 83 f8 01 0f 84 e3 00 00 00 85 c0 0f 8e fa 00 00 00 \u003c49\u003e 8b 45 50 48 8d 70 b0 49 8d 45 50 48 39 44 24 10 0f 85 34 fe ff\n[ 4070.574990] RSP: 0018:ffffc90002077b78 EFLAGS: 00010202\n[ 4070.574995] RAX: 0000000000000002 RBX: 0000000000000002 RCX: 0000000000000000\n[ 4070.575000] RDX: 0000000000000001 RSI: ffffc90002077b20 RDI: ffff88810ddc7c68\n[ 4070.575004] RBP: 0000000000000001 R08: ffff888103242648 R09: fffffffffffffffc\n[ 4070.575008] R10: ffffffff82c50bc0 R11: 0000000000025c80 R12: ffff888101bf1860\n[ 4070.575012] R13: dead0000000000b0 R14: ffffc90002077c04 R15: ffff88810be5cabc\n[ 4070.575016] FS:  00007f1ed50c0780(0000) GS:ffff88885ec80000(0000) knlGS:0000000000000000\n[ 4070.575021] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4070.575025] CR2: 00007f1ed5590280 CR3: 000000010ef6f005 CR4: 00000000003706e0\n[ 4070.575029] Call Trace:\n[ 4070.575033]  \u003cTASK\u003e\n[ 4070.575037]  lrc_configure_all_contexts+0x13e/0x150 [i915]\n[ 4070.575103]  gen8_enable_metric_set+0x4d/0x90 [i915]\n[ 4070.575164]  i915_perf_open_ioctl+0xbc0/0x1500 [i915]\n[ 4070.575224]  ? asm_common_interrupt+0x1e/0x40\n[ 4070.575232]  ? i915_oa_init_reg_state+0x110/0x110 [i915]\n[ 4070.575290]  drm_ioctl_kernel+0x85/0x110\n[ 4070.575296]  ? update_load_avg+0x5f/0x5e0\n[ 4070.575302]  drm_ioctl+0x1d3/0x370\n[ 4070.575307]  ? i915_oa_init_reg_state+0x110/0x110 [i915]\n[ 4070.575382]  ? gen8_gt_irq_handler+0x46/0x130 [i915]\n[ 4070.575445]  __x64_sys_ioctl+0x3c4/0x8d0\n[ 4070.575451]  ? __do_softirq+0xaa/0x1d2\n[ 4070.575456]  do_syscall_64+0x35/0x80\n[ 4070.575461]  entry_SYSCALL_64_after_hwframe+0x44/0xae\n[ 4070.575467] RIP: 0033:0x7f1ed5c10397\n[ 4070.575471] Code: 3c 1c e8 1c ff ff ff 85 c0 79 87 49 c7 c4 ff ff ff ff 5b 5d 4c 89 e0 41 5c c3 66 0f 1f 84 00 00 00 00 00 b8 10 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d a9 da 0d 00 f7 d8 64 89 01 48\n[ 4070.575478] RSP: 002b:00007ffd65c8d7a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n[ 4070.575484] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007f1ed5c10397\n[ 4070.575488] RDX: 00007ffd65c8d7c0 RSI: 0000000040106476 RDI: 0000000000000006\n[ 4070.575492] RBP: 00005620972f9c60 R08: 000000000000000a R09: 0000000000000005\n[ 4070.575496] R10: 000000000000000d R11: 0000000000000246 R12: 000000000000000a\n[ 4070.575500] R13: 000000000000000d R14: 0000000000000000 R15: 00007ffd65c8d7c0\n[ 4070.575505]  \u003c/TASK\u003e\n[ 4070.575507] Modules linked in: nls_ascii(E) nls_cp437(E) vfat(E) fat(E) i915(E) x86_pkg_temp_thermal(E) intel_powerclamp(E) crct10dif_pclmul(E) crc32_pclmul(E) crc32c_intel(E) aesni_intel(E) crypto_simd(E) intel_gtt(E) cryptd(E) ttm(E) rapl(E) intel_cstate(E) drm_kms_helper(E) cfbfillrect(E) syscopyarea(E) cfbimgblt(E) intel_uncore(E) sysfillrect(E) mei_me(E) sysimgblt(E) i2c_i801(E) fb_sys_fops(E) mei(E) intel_pch_thermal(E) i2c_smbus\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48662",
          "url": "https://www.suse.com/security/cve/CVE-2022-48662"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223505 for CVE-2022-48662",
          "url": "https://bugzilla.suse.com/1223505"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223521 for CVE-2022-48662",
          "url": "https://bugzilla.suse.com/1223521"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48662"
    },
    {
      "cve": "CVE-2022-48663",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48663"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: mockup: fix NULL pointer dereference when removing debugfs\n\nWe now remove the device\u0027s debugfs entries when unbinding the driver.\nThis now causes a NULL-pointer dereference on module exit because the\nplatform devices are unregistered *after* the global debugfs directory\nhas been recursively removed. Fix it by unregistering the devices first.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48663",
          "url": "https://www.suse.com/security/cve/CVE-2022-48663"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223523 for CVE-2022-48663",
          "url": "https://bugzilla.suse.com/1223523"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48663"
    },
    {
      "cve": "CVE-2022-48667",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48667"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix temporary data corruption in insert range\n\ninsert range doesn\u0027t discard the affected cached region\nso can risk temporarily corrupting file data.\n\nAlso includes some minor cleanup (avoiding rereading\ninode size repeatedly unnecessarily) to make it clearer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48667",
          "url": "https://www.suse.com/security/cve/CVE-2022-48667"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223518 for CVE-2022-48667",
          "url": "https://bugzilla.suse.com/1223518"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48667"
    },
    {
      "cve": "CVE-2022-48668",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48668"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix temporary data corruption in collapse range\n\ncollapse range doesn\u0027t discard the affected cached region\nso can risk temporarily corrupting the file data. This\nfixes xfstest generic/031\n\nI also decided to merge a minor cleanup to this into the same patch\n(avoiding rereading inode size repeatedly unnecessarily) to make it\nclearer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48668",
          "url": "https://www.suse.com/security/cve/CVE-2022-48668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223516 for CVE-2022-48668",
          "url": "https://bugzilla.suse.com/1223516"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48668"
    },
    {
      "cve": "CVE-2022-48671",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48671"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()\n\nsyzbot is hitting percpu_rwsem_assert_held(\u0026cpu_hotplug_lock) warning at\ncpuset_attach() [1], for commit 4f7e7236435ca0ab (\"cgroup: Fix\nthreadgroup_rwsem \u003c-\u003e cpus_read_lock() deadlock\") missed that\ncpuset_attach() is also called from cgroup_attach_task_all().\nAdd cpus_read_lock() like what cgroup_procs_write_start() does.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48671",
          "url": "https://www.suse.com/security/cve/CVE-2022-48671"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223929 for CVE-2022-48671",
          "url": "https://bugzilla.suse.com/1223929"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48671"
    },
    {
      "cve": "CVE-2022-48672",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48672"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: fdt: fix off-by-one error in unflatten_dt_nodes()\n\nCommit 78c44d910d3e (\"drivers/of: Fix depth when unflattening devicetree\")\nforgot to fix up the depth check in the loop body in unflatten_dt_nodes()\nwhich makes it possible to overflow the nps[] buffer...\n\nFound by Linux Verification Center (linuxtesting.org) with the SVACE static\nanalysis tool.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48672",
          "url": "https://www.suse.com/security/cve/CVE-2022-48672"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223931 for CVE-2022-48672",
          "url": "https://bugzilla.suse.com/1223931"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48672"
    },
    {
      "cve": "CVE-2022-48673",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48673"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: Fix possible access to freed memory in link clear\n\nAfter modifying the QP to the Error state, all RX WR would be completed\nwith WC in IB_WC_WR_FLUSH_ERR status. Current implementation does not\nwait for it is done, but destroy the QP and free the link group directly.\nSo there is a risk that accessing the freed memory in tasklet context.\n\nHere is a crash example:\n\n BUG: unable to handle page fault for address: ffffffff8f220860\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD f7300e067 P4D f7300e067 PUD f7300f063 PMD 8c4e45063 PTE 800ffff08c9df060\n Oops: 0002 [#1] SMP PTI\n CPU: 1 PID: 0 Comm: swapper/1 Kdump: loaded Tainted: G S         OE     5.10.0-0607+ #23\n Hardware name: Inspur NF5280M4/YZMB-00689-101, BIOS 4.1.20 07/09/2018\n RIP: 0010:native_queued_spin_lock_slowpath+0x176/0x1b0\n Code: f3 90 48 8b 32 48 85 f6 74 f6 eb d5 c1 ee 12 83 e0 03 83 ee 01 48 c1 e0 05 48 63 f6 48 05 00 c8 02 00 48 03 04 f5 00 09 98 8e \u003c48\u003e 89 10 8b 42 08 85 c0 75 09 f3 90 8b 42 08 85 c0 74 f7 48 8b 32\n RSP: 0018:ffffb3b6c001ebd8 EFLAGS: 00010086\n RAX: ffffffff8f220860 RBX: 0000000000000246 RCX: 0000000000080000\n RDX: ffff91db1f86c800 RSI: 000000000000173c RDI: ffff91db62bace00\n RBP: ffff91db62bacc00 R08: 0000000000000000 R09: c00000010000028b\n R10: 0000000000055198 R11: ffffb3b6c001ea58 R12: ffff91db80e05010\n R13: 000000000000000a R14: 0000000000000006 R15: 0000000000000040\n FS:  0000000000000000(0000) GS:ffff91db1f840000(0000) knlGS:0000000000000000\n CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffffff8f220860 CR3: 00000001f9580004 CR4: 00000000003706e0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n  \u003cIRQ\u003e\n  _raw_spin_lock_irqsave+0x30/0x40\n  mlx5_ib_poll_cq+0x4c/0xc50 [mlx5_ib]\n  smc_wr_rx_tasklet_fn+0x56/0xa0 [smc]\n  tasklet_action_common.isra.21+0x66/0x100\n  __do_softirq+0xd5/0x29c\n  asm_call_irq_on_stack+0x12/0x20\n  \u003c/IRQ\u003e\n  do_softirq_own_stack+0x37/0x40\n  irq_exit_rcu+0x9d/0xa0\n  sysvec_call_function_single+0x34/0x80\n  asm_sysvec_call_function_single+0x12/0x20",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48673",
          "url": "https://www.suse.com/security/cve/CVE-2022-48673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223934 for CVE-2022-48673",
          "url": "https://bugzilla.suse.com/1223934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223940 for CVE-2022-48673",
          "url": "https://bugzilla.suse.com/1223940"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48673"
    },
    {
      "cve": "CVE-2022-48675",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48675"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/core: Fix a nested dead lock as part of ODP flow\n\nFix a nested dead lock as part of ODP flow by using mmput_async().\n\nFrom the below call trace [1] can see that calling mmput() once we have\nthe umem_odp-\u003eumem_mutex locked as required by\nib_umem_odp_map_dma_and_lock() might trigger in the same task the\nexit_mmap()-\u003e__mmu_notifier_release()-\u003emlx5_ib_invalidate_range() which\nmay dead lock when trying to lock the same mutex.\n\nMoving to use mmput_async() will solve the problem as the above\nexit_mmap() flow will be called in other task and will be executed once\nthe lock will be available.\n\n[1]\n[64843.077665] task:kworker/u133:2  state:D stack:    0 pid:80906 ppid:\n2 flags:0x00004000\n[64843.077672] Workqueue: mlx5_ib_page_fault mlx5_ib_eqe_pf_action [mlx5_ib]\n[64843.077719] Call Trace:\n[64843.077722]  \u003cTASK\u003e\n[64843.077724]  __schedule+0x23d/0x590\n[64843.077729]  schedule+0x4e/0xb0\n[64843.077735]  schedule_preempt_disabled+0xe/0x10\n[64843.077740]  __mutex_lock.constprop.0+0x263/0x490\n[64843.077747]  __mutex_lock_slowpath+0x13/0x20\n[64843.077752]  mutex_lock+0x34/0x40\n[64843.077758]  mlx5_ib_invalidate_range+0x48/0x270 [mlx5_ib]\n[64843.077808]  __mmu_notifier_release+0x1a4/0x200\n[64843.077816]  exit_mmap+0x1bc/0x200\n[64843.077822]  ? walk_page_range+0x9c/0x120\n[64843.077828]  ? __cond_resched+0x1a/0x50\n[64843.077833]  ? mutex_lock+0x13/0x40\n[64843.077839]  ? uprobe_clear_state+0xac/0x120\n[64843.077860]  mmput+0x5f/0x140\n[64843.077867]  ib_umem_odp_map_dma_and_lock+0x21b/0x580 [ib_core]\n[64843.077931]  pagefault_real_mr+0x9a/0x140 [mlx5_ib]\n[64843.077962]  pagefault_mr+0xb4/0x550 [mlx5_ib]\n[64843.077992]  pagefault_single_data_segment.constprop.0+0x2ac/0x560\n[mlx5_ib]\n[64843.078022]  mlx5_ib_eqe_pf_action+0x528/0x780 [mlx5_ib]\n[64843.078051]  process_one_work+0x22b/0x3d0\n[64843.078059]  worker_thread+0x53/0x410\n[64843.078065]  ? process_one_work+0x3d0/0x3d0\n[64843.078073]  kthread+0x12a/0x150\n[64843.078079]  ? set_kthread_struct+0x50/0x50\n[64843.078085]  ret_from_fork+0x22/0x30\n[64843.078093]  \u003c/TASK\u003e",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48675",
          "url": "https://www.suse.com/security/cve/CVE-2022-48675"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223894 for CVE-2022-48675",
          "url": "https://bugzilla.suse.com/1223894"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48675"
    },
    {
      "cve": "CVE-2022-48686",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48686"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: fix UAF when detecting digest errors\n\nWe should also bail from the io_work loop when we set rd_enabled to true,\nso we don\u0027t attempt to read data from the socket when the TCP stream is\nalready out-of-sync or corrupted.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48686",
          "url": "https://www.suse.com/security/cve/CVE-2022-48686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223948 for CVE-2022-48686",
          "url": "https://bugzilla.suse.com/1223948"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1226337 for CVE-2022-48686",
          "url": "https://bugzilla.suse.com/1226337"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48686"
    },
    {
      "cve": "CVE-2022-48687",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48687"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: sr: fix out-of-bounds read when setting HMAC data.\n\nThe SRv6 layer allows defining HMAC data that can later be used to sign IPv6\nSegment Routing Headers. This configuration is realised via netlink through\nfour attributes: SEG6_ATTR_HMACKEYID, SEG6_ATTR_SECRET, SEG6_ATTR_SECRETLEN and\nSEG6_ATTR_ALGID. Because the SECRETLEN attribute is decoupled from the actual\nlength of the SECRET attribute, it is possible to provide invalid combinations\n(e.g., secret = \"\", secretlen = 64). This case is not checked in the code and\nwith an appropriately crafted netlink message, an out-of-bounds read of up\nto 64 bytes (max secret length) can occur past the skb end pointer and into\nskb_shared_info:\n\nBreakpoint 1, seg6_genl_sethmac (skb=\u003coptimized out\u003e, info=\u003coptimized out\u003e) at net/ipv6/seg6.c:208\n208\t\tmemcpy(hinfo-\u003esecret, secret, slen);\n(gdb) bt\n #0  seg6_genl_sethmac (skb=\u003coptimized out\u003e, info=\u003coptimized out\u003e) at net/ipv6/seg6.c:208\n #1  0xffffffff81e012e9 in genl_family_rcv_msg_doit (skb=skb@entry=0xffff88800b1f9f00, nlh=nlh@entry=0xffff88800b1b7600,\n    extack=extack@entry=0xffffc90000ba7af0, ops=ops@entry=0xffffc90000ba7a80, hdrlen=4, net=0xffffffff84237580 \u003cinit_net\u003e, family=\u003coptimized out\u003e,\n    family=\u003coptimized out\u003e) at net/netlink/genetlink.c:731\n #2  0xffffffff81e01435 in genl_family_rcv_msg (extack=0xffffc90000ba7af0, nlh=0xffff88800b1b7600, skb=0xffff88800b1f9f00,\n    family=0xffffffff82fef6c0 \u003cseg6_genl_family\u003e) at net/netlink/genetlink.c:775\n #3  genl_rcv_msg (skb=0xffff88800b1f9f00, nlh=0xffff88800b1b7600, extack=0xffffc90000ba7af0) at net/netlink/genetlink.c:792\n #4  0xffffffff81dfffc3 in netlink_rcv_skb (skb=skb@entry=0xffff88800b1f9f00, cb=cb@entry=0xffffffff81e01350 \u003cgenl_rcv_msg\u003e)\n    at net/netlink/af_netlink.c:2501\n #5  0xffffffff81e00919 in genl_rcv (skb=0xffff88800b1f9f00) at net/netlink/genetlink.c:803\n #6  0xffffffff81dff6ae in netlink_unicast_kernel (ssk=0xffff888010eec800, skb=0xffff88800b1f9f00, sk=0xffff888004aed000)\n    at net/netlink/af_netlink.c:1319\n #7  netlink_unicast (ssk=ssk@entry=0xffff888010eec800, skb=skb@entry=0xffff88800b1f9f00, portid=portid@entry=0, nonblock=\u003coptimized out\u003e)\n    at net/netlink/af_netlink.c:1345\n #8  0xffffffff81dff9a4 in netlink_sendmsg (sock=\u003coptimized out\u003e, msg=0xffffc90000ba7e48, len=\u003coptimized out\u003e) at net/netlink/af_netlink.c:1921\n...\n(gdb) p/x ((struct sk_buff *)0xffff88800b1f9f00)-\u003ehead + ((struct sk_buff *)0xffff88800b1f9f00)-\u003eend\n$1 = 0xffff88800b1b76c0\n(gdb) p/x secret\n$2 = 0xffff88800b1b76c0\n(gdb) p slen\n$3 = 64 \u0027@\u0027\n\nThe OOB data can then be read back from userspace by dumping HMAC state. This\ncommit fixes this by ensuring SECRETLEN cannot exceed the actual length of\nSECRET.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48687",
          "url": "https://www.suse.com/security/cve/CVE-2022-48687"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223952 for CVE-2022-48687",
          "url": "https://bugzilla.suse.com/1223952"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1224043 for CVE-2022-48687",
          "url": "https://bugzilla.suse.com/1224043"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-48687"
    },
    {
      "cve": "CVE-2022-48688",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48688"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Fix kernel crash during module removal\n\nThe driver incorrectly frees client instance and subsequent\ni40e module removal leads to kernel crash.\n\nReproducer:\n1. Do ethtool offline test followed immediately by another one\nhost# ethtool -t eth0 offline; ethtool -t eth0 offline\n2. Remove recursively irdma module that also removes i40e module\nhost# modprobe -r irdma\n\nResult:\n[ 8675.035651] i40e 0000:3d:00.0 eno1: offline testing starting\n[ 8675.193774] i40e 0000:3d:00.0 eno1: testing finished\n[ 8675.201316] i40e 0000:3d:00.0 eno1: offline testing starting\n[ 8675.358921] i40e 0000:3d:00.0 eno1: testing finished\n[ 8675.496921] i40e 0000:3d:00.0: IRDMA hardware initialization FAILED init_state=2 status=-110\n[ 8686.188955] i40e 0000:3d:00.1: i40e_ptp_stop: removed PHC on eno2\n[ 8686.943890] i40e 0000:3d:00.1: Deleted LAN device PF1 bus=0x3d dev=0x00 func=0x01\n[ 8686.952669] i40e 0000:3d:00.0: i40e_ptp_stop: removed PHC on eno1\n[ 8687.761787] BUG: kernel NULL pointer dereference, address: 0000000000000030\n[ 8687.768755] #PF: supervisor read access in kernel mode\n[ 8687.773895] #PF: error_code(0x0000) - not-present page\n[ 8687.779034] PGD 0 P4D 0\n[ 8687.781575] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[ 8687.785935] CPU: 51 PID: 172891 Comm: rmmod Kdump: loaded Tainted: G        W I        5.19.0+ #2\n[ 8687.794800] Hardware name: Intel Corporation S2600WFD/S2600WFD, BIOS SE5C620.86B.0X.02.0001.051420190324 05/14/2019\n[ 8687.805222] RIP: 0010:i40e_lan_del_device+0x13/0xb0 [i40e]\n[ 8687.810719] Code: d4 84 c0 0f 84 b8 25 01 00 e9 9c 25 01 00 41 bc f4 ff ff ff eb 91 90 0f 1f 44 00 00 41 54 55 53 48 8b 87 58 08 00 00 48 89 fb \u003c48\u003e 8b 68 30 48 89 ef e8 21 8a 0f d5 48 89 ef e8 a9 78 0f d5 48 8b\n[ 8687.829462] RSP: 0018:ffffa604072efce0 EFLAGS: 00010202\n[ 8687.834689] RAX: 0000000000000000 RBX: ffff8f43833b2000 RCX: 0000000000000000\n[ 8687.841821] RDX: 0000000000000000 RSI: ffff8f4b0545b298 RDI: ffff8f43833b2000\n[ 8687.848955] RBP: ffff8f43833b2000 R08: 0000000000000001 R09: 0000000000000000\n[ 8687.856086] R10: 0000000000000000 R11: 000ffffffffff000 R12: ffff8f43833b2ef0\n[ 8687.863218] R13: ffff8f43833b2ef0 R14: ffff915103966000 R15: ffff8f43833b2008\n[ 8687.870342] FS:  00007f79501c3740(0000) GS:ffff8f4adffc0000(0000) knlGS:0000000000000000\n[ 8687.878427] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 8687.884174] CR2: 0000000000000030 CR3: 000000014276e004 CR4: 00000000007706e0\n[ 8687.891306] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 8687.898441] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 8687.905572] PKRU: 55555554\n[ 8687.908286] Call Trace:\n[ 8687.910737]  \u003cTASK\u003e\n[ 8687.912843]  i40e_remove+0x2c0/0x330 [i40e]\n[ 8687.917040]  pci_device_remove+0x33/0xa0\n[ 8687.920962]  device_release_driver_internal+0x1aa/0x230\n[ 8687.926188]  driver_detach+0x44/0x90\n[ 8687.929770]  bus_remove_driver+0x55/0xe0\n[ 8687.933693]  pci_unregister_driver+0x2a/0xb0\n[ 8687.937967]  i40e_exit_module+0xc/0xf48 [i40e]\n\nTwo offline tests cause IRDMA driver failure (ETIMEDOUT) and this\nfailure is indicated back to i40e_client_subtask() that calls\ni40e_client_del_instance() to free client instance referenced\nby pf-\u003ecinst and sets this pointer to NULL. During the module\nremoval i40e_remove() calls i40e_lan_del_device() that dereferences\npf-\u003ecinst that is NULL -\u003e crash.\nDo not remove client instance when client open callbacks fails and\njust clear __I40E_CLIENT_INSTANCE_OPENED bit. The driver also needs\nto take care about this situation (when netdev is up and client\nis NOT opened) in i40e_notify_client_of_netdev_close() and\ncalls client close callback only when __I40E_CLIENT_INSTANCE_OPENED\nis set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48688",
          "url": "https://www.suse.com/security/cve/CVE-2022-48688"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223953 for CVE-2022-48688",
          "url": "https://bugzilla.suse.com/1223953"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48688"
    },
    {
      "cve": "CVE-2022-48690",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48690"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix DMA mappings leak\n\nFix leak, when user changes ring parameters.\nDuring reallocation of RX buffers, new DMA mappings are created for\nthose buffers. New buffers with different RX ring count should\nsubstitute older ones, but those buffers were freed in ice_vsi_cfg_rxq\nand reallocated again with ice_alloc_rx_buf. kfree on rx_buf caused\nleak of already mapped DMA.\nReallocate ZC with xdp_buf struct, when BPF program loads. Reallocate\nback to rx_buf, when BPF program unloads.\nIf BPF program is loaded/unloaded and XSK pools are created, reallocate\nRX queues accordingly in XDP_SETUP_XSK_POOL handler.\n\nSteps for reproduction:\nwhile :\ndo\n\tfor ((i=0; i\u003c=8160; i=i+32))\n\tdo\n\t\tethtool -G enp130s0f0 rx $i tx $i\n\t\tsleep 0.5\n\t\tethtool -g enp130s0f0\n\tdone\ndone",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48690",
          "url": "https://www.suse.com/security/cve/CVE-2022-48690"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223960 for CVE-2022-48690",
          "url": "https://bugzilla.suse.com/1223960"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48690"
    },
    {
      "cve": "CVE-2022-48692",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48692"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/srp: Set scmnd-\u003eresult only when scmnd is not NULL\n\nThis change fixes the following kernel NULL pointer dereference\nwhich is reproduced by blktests srp/007 occasionally.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000170\nPGD 0 P4D 0\nOops: 0002 [#1] PREEMPT SMP NOPTI\nCPU: 0 PID: 9 Comm: kworker/0:1H Kdump: loaded Not tainted 6.0.0-rc1+ #37\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.15.0-29-g6a62e0cb0dfe-prebuilt.qemu.org 04/01/2014\nWorkqueue:  0x0 (kblockd)\nRIP: 0010:srp_recv_done+0x176/0x500 [ib_srp]\nCode: 00 4d 85 ff 0f 84 52 02 00 00 48 c7 82 80 02 00 00 00 00 00 00 4c 89 df 4c 89 14 24 e8 53 d3 4a f6 4c 8b 14 24 41 0f b6 42 13 \u003c41\u003e 89 87 70 01 00 00 41 0f b6 52 12 f6 c2 02 74 44 41 8b 42 1c b9\nRSP: 0018:ffffaef7c0003e28 EFLAGS: 00000282\nRAX: 0000000000000000 RBX: ffff9bc9486dea60 RCX: 0000000000000000\nRDX: 0000000000000102 RSI: ffffffffb76bbd0e RDI: 00000000ffffffff\nRBP: ffff9bc980099a00 R08: 0000000000000001 R09: 0000000000000001\nR10: ffff9bca53ef0000 R11: ffff9bc980099a10 R12: ffff9bc956e14000\nR13: ffff9bc9836b9cb0 R14: ffff9bc9557b4480 R15: 0000000000000000\nFS:  0000000000000000(0000) GS:ffff9bc97ec00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000170 CR3: 0000000007e04000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\n __ib_process_cq+0xb7/0x280 [ib_core]\n ib_poll_handler+0x2b/0x130 [ib_core]\n irq_poll_softirq+0x93/0x150\n __do_softirq+0xee/0x4b8\n irq_exit_rcu+0xf7/0x130\n sysvec_apic_timer_interrupt+0x8e/0xc0\n \u003c/IRQ\u003e",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48692",
          "url": "https://www.suse.com/security/cve/CVE-2022-48692"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223962 for CVE-2022-48692",
          "url": "https://bugzilla.suse.com/1223962"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48692"
    },
    {
      "cve": "CVE-2022-48693",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48693"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs\n\nIn brcmstb_pm_probe(), there are two kinds of leak bugs:\n\n(1) we need to add of_node_put() when for_each__matching_node() breaks\n(2) we need to add iounmap() for each iomap in fail path",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48693",
          "url": "https://www.suse.com/security/cve/CVE-2022-48693"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223963 for CVE-2022-48693",
          "url": "https://bugzilla.suse.com/1223963"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48693"
    },
    {
      "cve": "CVE-2022-48694",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48694"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix drain SQ hang with no completion\n\nSW generated completions for outstanding WRs posted on SQ\nafter QP is in error target the wrong CQ. This causes the\nib_drain_sq to hang with no completion.\n\nFix this to generate completions on the right CQ.\n\n[  863.969340] INFO: task kworker/u52:2:671 blocked for more than 122 seconds.\n[  863.979224]       Not tainted 5.14.0-130.el9.x86_64 #1\n[  863.986588] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n[  863.996997] task:kworker/u52:2   state:D stack:    0 pid:  671 ppid:     2 flags:0x00004000\n[  864.007272] Workqueue: xprtiod xprt_autoclose [sunrpc]\n[  864.014056] Call Trace:\n[  864.017575]  __schedule+0x206/0x580\n[  864.022296]  schedule+0x43/0xa0\n[  864.026736]  schedule_timeout+0x115/0x150\n[  864.032185]  __wait_for_common+0x93/0x1d0\n[  864.037717]  ? usleep_range_state+0x90/0x90\n[  864.043368]  __ib_drain_sq+0xf6/0x170 [ib_core]\n[  864.049371]  ? __rdma_block_iter_next+0x80/0x80 [ib_core]\n[  864.056240]  ib_drain_sq+0x66/0x70 [ib_core]\n[  864.062003]  rpcrdma_xprt_disconnect+0x82/0x3b0 [rpcrdma]\n[  864.069365]  ? xprt_prepare_transmit+0x5d/0xc0 [sunrpc]\n[  864.076386]  xprt_rdma_close+0xe/0x30 [rpcrdma]\n[  864.082593]  xprt_autoclose+0x52/0x100 [sunrpc]\n[  864.088718]  process_one_work+0x1e8/0x3c0\n[  864.094170]  worker_thread+0x50/0x3b0\n[  864.099109]  ? rescuer_thread+0x370/0x370\n[  864.104473]  kthread+0x149/0x170\n[  864.109022]  ? set_kthread_struct+0x40/0x40\n[  864.114713]  ret_from_fork+0x22/0x30",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48694",
          "url": "https://www.suse.com/security/cve/CVE-2022-48694"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223964 for CVE-2022-48694",
          "url": "https://bugzilla.suse.com/1223964"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48694"
    },
    {
      "cve": "CVE-2022-48695",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48695"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: mpt3sas: Fix use-after-free warning\n\nFix the following use-after-free warning which is observed during\ncontroller reset:\n\nrefcount_t: underflow; use-after-free.\nWARNING: CPU: 23 PID: 5399 at lib/refcount.c:28 refcount_warn_saturate+0xa6/0xf0",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48695",
          "url": "https://www.suse.com/security/cve/CVE-2022-48695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223941 for CVE-2022-48695",
          "url": "https://bugzilla.suse.com/1223941"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48695"
    },
    {
      "cve": "CVE-2022-48697",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48697"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet: fix a use-after-free\n\nFix the following use-after-free complaint triggered by blktests nvme/004:\n\nBUG: KASAN: user-memory-access in blk_mq_complete_request_remote+0xac/0x350\nRead of size 4 at addr 0000607bd1835943 by task kworker/13:1/460\nWorkqueue: nvmet-wq nvme_loop_execute_work [nvme_loop]\nCall Trace:\n show_stack+0x52/0x58\n dump_stack_lvl+0x49/0x5e\n print_report.cold+0x36/0x1e2\n kasan_report+0xb9/0xf0\n __asan_load4+0x6b/0x80\n blk_mq_complete_request_remote+0xac/0x350\n nvme_loop_queue_response+0x1df/0x275 [nvme_loop]\n __nvmet_req_complete+0x132/0x4f0 [nvmet]\n nvmet_req_complete+0x15/0x40 [nvmet]\n nvmet_execute_io_connect+0x18a/0x1f0 [nvmet]\n nvme_loop_execute_work+0x20/0x30 [nvme_loop]\n process_one_work+0x56e/0xa70\n worker_thread+0x2d1/0x640\n kthread+0x183/0x1c0\n ret_from_fork+0x1f/0x30",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48697",
          "url": "https://www.suse.com/security/cve/CVE-2022-48697"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223922 for CVE-2022-48697",
          "url": "https://bugzilla.suse.com/1223922"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48697"
    },
    {
      "cve": "CVE-2022-48698",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48698"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix memory leak when using debugfs_lookup()\n\nWhen calling debugfs_lookup() the result must have dput() called on it,\notherwise the memory will leak over time.  Fix this up by properly\ncalling dput().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48698",
          "url": "https://www.suse.com/security/cve/CVE-2022-48698"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223956 for CVE-2022-48698",
          "url": "https://bugzilla.suse.com/1223956"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48698"
    },
    {
      "cve": "CVE-2022-48699",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48699"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/debug: fix dentry leak in update_sched_domain_debugfs\n\nKuyo reports that the pattern of using debugfs_remove(debugfs_lookup())\nleaks a dentry and with a hotplug stress test, the machine eventually\nruns out of memory.\n\nFix this up by using the newly created debugfs_lookup_and_remove() call\ninstead which properly handles the dentry reference counting logic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48699",
          "url": "https://www.suse.com/security/cve/CVE-2022-48699"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223996 for CVE-2022-48699",
          "url": "https://bugzilla.suse.com/1223996"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48699"
    },
    {
      "cve": "CVE-2022-48700",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48700"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48700",
          "url": "https://www.suse.com/security/cve/CVE-2022-48700"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223957 for CVE-2022-48700",
          "url": "https://bugzilla.suse.com/1223957"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48700"
    },
    {
      "cve": "CVE-2022-48701",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48701"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface()\n\nThere may be a bad USB audio device with a USB ID of (0x04fa, 0x4201) and\nthe number of it\u0027s interfaces less than 4, an out-of-bounds read bug occurs\nwhen parsing the interface descriptor for this device.\n\nFix this by checking the number of interfaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48701",
          "url": "https://www.suse.com/security/cve/CVE-2022-48701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223921 for CVE-2022-48701",
          "url": "https://bugzilla.suse.com/1223921"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-48701"
    },
    {
      "cve": "CVE-2022-48702",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48702"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc()\n\nThe voice allocator sometimes begins allocating from near the end of the\narray and then wraps around, however snd_emu10k1_pcm_channel_alloc()\naccesses the newly allocated voices as if it never wrapped around.\n\nThis results in out of bounds access if the first voice has a high enough\nindex so that first_voice + requested_voice_count \u003e NUM_G (64).\nThe more voices are requested, the more likely it is for this to occur.\n\nThis was initially discovered using PipeWire, however it can be reproduced\nby calling aplay multiple times with 16 channels:\naplay -r 48000 -D plughw:CARD=Live,DEV=3 -c 16 /dev/zero\n\nUBSAN: array-index-out-of-bounds in sound/pci/emu10k1/emupcm.c:127:40\nindex 65 is out of range for type \u0027snd_emu10k1_voice [64]\u0027\nCPU: 1 PID: 31977 Comm: aplay Tainted: G        W IOE      6.0.0-rc2-emu10k1+ #7\nHardware name: ASUSTEK COMPUTER INC P5W DH Deluxe/P5W DH Deluxe, BIOS 3002    07/22/2010\nCall Trace:\n\u003cTASK\u003e\ndump_stack_lvl+0x49/0x63\ndump_stack+0x10/0x16\nubsan_epilogue+0x9/0x3f\n__ubsan_handle_out_of_bounds.cold+0x44/0x49\nsnd_emu10k1_playback_hw_params+0x3bc/0x420 [snd_emu10k1]\nsnd_pcm_hw_params+0x29f/0x600 [snd_pcm]\nsnd_pcm_common_ioctl+0x188/0x1410 [snd_pcm]\n? exit_to_user_mode_prepare+0x35/0x170\n? do_syscall_64+0x69/0x90\n? syscall_exit_to_user_mode+0x26/0x50\n? do_syscall_64+0x69/0x90\n? exit_to_user_mode_prepare+0x35/0x170\nsnd_pcm_ioctl+0x27/0x40 [snd_pcm]\n__x64_sys_ioctl+0x95/0xd0\ndo_syscall_64+0x5c/0x90\n? do_syscall_64+0x69/0x90\n? do_syscall_64+0x69/0x90\nentry_SYSCALL_64_after_hwframe+0x63/0xcd",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48702",
          "url": "https://www.suse.com/security/cve/CVE-2022-48702"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223923 for CVE-2022-48702",
          "url": "https://bugzilla.suse.com/1223923"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48702"
    },
    {
      "cve": "CVE-2022-48703",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48703"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR\n\nIn some case, the GDDV returns a package with a buffer which has\nzero length. It causes that kmemdup() returns ZERO_SIZE_PTR (0x10).\n\nThen the data_vault_read() got NULL point dereference problem when\naccessing the 0x10 value in data_vault.\n\n[   71.024560] BUG: kernel NULL pointer dereference, address:\n0000000000000010\n\nThis patch uses ZERO_OR_NULL_PTR() for checking ZERO_SIZE_PTR or\nNULL value in data_vault.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48703",
          "url": "https://www.suse.com/security/cve/CVE-2022-48703"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223924 for CVE-2022-48703",
          "url": "https://bugzilla.suse.com/1223924"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48703"
    },
    {
      "cve": "CVE-2022-48704",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-48704"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: add a force flush to delay work when radeon\n\nAlthough radeon card fence and wait for gpu to finish processing current batch rings,\nthere is still a corner case that radeon lockup work queue may not be fully flushed,\nand meanwhile the radeon_suspend_kms() function has called pci_set_power_state() to\nput device in D3hot state.\nPer PCI spec rev 4.0 on 5.3.1.4.1 D3hot State.\n\u003e Configuration and Message requests are the only TLPs accepted by a Function in\n\u003e the D3hot state. All other received Requests must be handled as Unsupported Requests,\n\u003e and all received Completions may optionally be handled as Unexpected Completions.\nThis issue will happen in following logs:\nUnable to handle kernel paging request at virtual address 00008800e0008010\nCPU 0 kworker/0:3(131): Oops 0\npc = [\u003cffffffff811bea5c\u003e]  ra = [\u003cffffffff81240844\u003e]  ps = 0000 Tainted: G        W\npc is at si_gpu_check_soft_reset+0x3c/0x240\nra is at si_dma_is_lockup+0x34/0xd0\nv0 = 0000000000000000  t0 = fff08800e0008010  t1 = 0000000000010000\nt2 = 0000000000008010  t3 = fff00007e3c00000  t4 = fff00007e3c00258\nt5 = 000000000000ffff  t6 = 0000000000000001  t7 = fff00007ef078000\ns0 = fff00007e3c016e8  s1 = fff00007e3c00000  s2 = fff00007e3c00018\ns3 = fff00007e3c00000  s4 = fff00007fff59d80  s5 = 0000000000000000\ns6 = fff00007ef07bd98\na0 = fff00007e3c00000  a1 = fff00007e3c016e8  a2 = 0000000000000008\na3 = 0000000000000001  a4 = 8f5c28f5c28f5c29  a5 = ffffffff810f4338\nt8 = 0000000000000275  t9 = ffffffff809b66f8  t10 = ff6769c5d964b800\nt11= 000000000000b886  pv = ffffffff811bea20  at = 0000000000000000\ngp = ffffffff81d89690  sp = 00000000aa814126\nDisabling lock debugging due to kernel taint\nTrace:\n[\u003cffffffff81240844\u003e] si_dma_is_lockup+0x34/0xd0\n[\u003cffffffff81119610\u003e] radeon_fence_check_lockup+0xd0/0x290\n[\u003cffffffff80977010\u003e] process_one_work+0x280/0x550\n[\u003cffffffff80977350\u003e] worker_thread+0x70/0x7c0\n[\u003cffffffff80977410\u003e] worker_thread+0x130/0x7c0\n[\u003cffffffff80982040\u003e] kthread+0x200/0x210\n[\u003cffffffff809772e0\u003e] worker_thread+0x0/0x7c0\n[\u003cffffffff80981f8c\u003e] kthread+0x14c/0x210\n[\u003cffffffff80911658\u003e] ret_from_kernel_thread+0x18/0x20\n[\u003cffffffff80981e40\u003e] kthread+0x0/0x210\n Code: ad3e0008  43f0074a  ad7e0018  ad9e0020  8c3001e8  40230101\n \u003c88210000\u003e 4821ed21\nSo force lockup work queue flush to fix this problem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-48704",
          "url": "https://www.suse.com/security/cve/CVE-2022-48704"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223932 for CVE-2022-48704",
          "url": "https://bugzilla.suse.com/1223932"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-48704"
    },
    {
      "cve": "CVE-2023-2860",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-2860"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. The flaw exists within the processing of seg6 attributes. The issue results from the improper validation of user-supplied data, which can result in a read past the end of an allocated buffer. This flaw allows a privileged local user to disclose sensitive information on affected installations of the Linux kernel.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-2860",
          "url": "https://www.suse.com/security/cve/CVE-2023-2860"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1211592 for CVE-2023-2860",
          "url": "https://bugzilla.suse.com/1211592"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-2860"
    },
    {
      "cve": "CVE-2023-52585",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52585"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper()\n\nReturn invalid error code -EINVAL for invalid block id.\n\nFixes the below:\n\ndrivers/gpu/drm/amd/amdgpu/amdgpu_ras.c:1183 amdgpu_ras_query_error_status_helper() error: we previously assumed \u0027info\u0027 could be null (see line 1176)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52585",
          "url": "https://www.suse.com/security/cve/CVE-2023-52585"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221080 for CVE-2023-52585",
          "url": "https://bugzilla.suse.com/1221080"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52585"
    },
    {
      "cve": "CVE-2023-52589",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52589"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: rkisp1: Fix IRQ disable race issue\n\nIn rkisp1_isp_stop() and rkisp1_csi_disable() the driver masks the\ninterrupts and then apparently assumes that the interrupt handler won\u0027t\nbe running, and proceeds in the stop procedure. This is not the case, as\nthe interrupt handler can already be running, which would lead to the\nISP being disabled while the interrupt handler handling a captured\nframe.\n\nThis brings up two issues: 1) the ISP could be powered off while the\ninterrupt handler is still running and accessing registers, leading to\nboard lockup, and 2) the interrupt handler code and the code that\ndisables the streaming might do things that conflict.\n\nIt is not clear to me if 2) causes a real issue, but 1) can be seen with\na suitable delay (or printk in my case) in the interrupt handler,\nleading to board lockup.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52589",
          "url": "https://www.suse.com/security/cve/CVE-2023-52589"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221084 for CVE-2023-52589",
          "url": "https://bugzilla.suse.com/1221084"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52589"
    },
    {
      "cve": "CVE-2023-52590",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52590"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: Avoid touching renamed directory if parent does not change\n\nThe VFS will not be locking moved directory if its parent does not\nchange. Change ocfs2 rename code to avoid touching renamed directory if\nits parent does not change as without locking that can corrupt the\nfilesystem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52590",
          "url": "https://www.suse.com/security/cve/CVE-2023-52590"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221088 for CVE-2023-52590",
          "url": "https://bugzilla.suse.com/1221088"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52590"
    },
    {
      "cve": "CVE-2023-52591",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52591"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nreiserfs: Avoid touching renamed directory if parent does not change\n\nThe VFS will not be locking moved directory if its parent does not\nchange. Change reiserfs rename code to avoid touching renamed directory\nif its parent does not change as without locking that can corrupt the\nfilesystem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52591",
          "url": "https://www.suse.com/security/cve/CVE-2023-52591"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221044 for CVE-2023-52591",
          "url": "https://bugzilla.suse.com/1221044"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221578 for CVE-2023-52591",
          "url": "https://bugzilla.suse.com/1221578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221598 for CVE-2023-52591",
          "url": "https://bugzilla.suse.com/1221598"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-52591"
    },
    {
      "cve": "CVE-2023-52593",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52593"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wfx: fix possible NULL pointer dereference in wfx_set_mfp_ap()\n\nSince \u0027ieee80211_beacon_get()\u0027 can return NULL, \u0027wfx_set_mfp_ap()\u0027\nshould check the return value before examining skb data. So convert\nthe latter to return an appropriate error code and propagate it to\nreturn from \u0027wfx_start_ap()\u0027 as well. Compile tested only.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52593",
          "url": "https://www.suse.com/security/cve/CVE-2023-52593"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221042 for CVE-2023-52593",
          "url": "https://bugzilla.suse.com/1221042"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52593"
    },
    {
      "cve": "CVE-2023-52614",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52614"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPM / devfreq: Fix buffer overflow in trans_stat_show\n\nFix buffer overflow in trans_stat_show().\n\nConvert simple snprintf to the more secure scnprintf with size of\nPAGE_SIZE.\n\nAdd condition checking if we are exceeding PAGE_SIZE and exit early from\nloop. Also add at the end a warning that we exceeded PAGE_SIZE and that\nstats is disabled.\n\nReturn -EFBIG in the case where we don\u0027t have enough space to write the\nfull transition table.\n\nAlso document in the ABI that this function can return -EFBIG error.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52614",
          "url": "https://www.suse.com/security/cve/CVE-2023-52614"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221617 for CVE-2023-52614",
          "url": "https://bugzilla.suse.com/1221617"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52614"
    },
    {
      "cve": "CVE-2023-52616",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52616"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init\n\nWhen the mpi_ec_ctx structure is initialized, some fields are not\ncleared, causing a crash when referencing the field when the\nstructure was released. Initially, this issue was ignored because\nmemory for mpi_ec_ctx is allocated with the __GFP_ZERO flag.\nFor example, this error will be triggered when calculating the\nZa value for SM2 separately.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52616",
          "url": "https://www.suse.com/security/cve/CVE-2023-52616"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221612 for CVE-2023-52616",
          "url": "https://bugzilla.suse.com/1221612"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52616"
    },
    {
      "cve": "CVE-2023-52620",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52620"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: disallow timeout for anonymous sets\n\nNever used from userspace, disallow these parameters.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52620",
          "url": "https://www.suse.com/security/cve/CVE-2023-52620"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221825 for CVE-2023-52620",
          "url": "https://bugzilla.suse.com/1221825"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52620"
    },
    {
      "cve": "CVE-2023-52635",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52635"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nPM / devfreq: Synchronize devfreq_monitor_[start/stop]\n\nThere is a chance if a frequent switch of the governor\ndone in a loop result in timer list corruption where\ntimer cancel being done from two place one from\ncancel_delayed_work_sync() and followed by expire_timers()\ncan be seen from the traces[1].\n\nwhile true\ndo\n        echo \"simple_ondemand\" \u003e /sys/class/devfreq/1d84000.ufshc/governor\n        echo \"performance\" \u003e /sys/class/devfreq/1d84000.ufshc/governor\ndone\n\nIt looks to be issue with devfreq driver where\ndevice_monitor_[start/stop] need to synchronized so that\ndelayed work should get corrupted while it is either\nbeing queued or running or being cancelled.\n\nLet\u0027s use polling flag and devfreq lock to synchronize the\nqueueing the timer instance twice and work data being\ncorrupted.\n\n[1]\n...\n..\n\u003cidle\u003e-0    [003]   9436.209662:  timer_cancel   timer=0xffffff80444f0428\n\u003cidle\u003e-0    [003]   9436.209664:  timer_expire_entry   timer=0xffffff80444f0428  now=0x10022da1c  function=__typeid__ZTSFvP10timer_listE_global_addr  baseclk=0x10022da1c\n\u003cidle\u003e-0    [003]   9436.209718:  timer_expire_exit   timer=0xffffff80444f0428\nkworker/u16:6-14217    [003]   9436.209863:  timer_start   timer=0xffffff80444f0428  function=__typeid__ZTSFvP10timer_listE_global_addr  expires=0x10022da2b  now=0x10022da1c  flags=182452227\nvendor.xxxyyy.ha-1593    [004]   9436.209888:  timer_cancel   timer=0xffffff80444f0428\nvendor.xxxyyy.ha-1593    [004]   9436.216390:  timer_init   timer=0xffffff80444f0428\nvendor.xxxyyy.ha-1593    [004]   9436.216392:  timer_start   timer=0xffffff80444f0428  function=__typeid__ZTSFvP10timer_listE_global_addr  expires=0x10022da2c  now=0x10022da1d  flags=186646532\nvendor.xxxyyy.ha-1593    [005]   9436.220992:  timer_cancel   timer=0xffffff80444f0428\nxxxyyyTraceManag-7795    [004]   9436.261641:  timer_cancel   timer=0xffffff80444f0428\n\n[2]\n\n 9436.261653][    C4] Unable to handle kernel paging request at virtual address dead00000000012a\n[ 9436.261664][    C4] Mem abort info:\n[ 9436.261666][    C4]   ESR = 0x96000044\n[ 9436.261669][    C4]   EC = 0x25: DABT (current EL), IL = 32 bits\n[ 9436.261671][    C4]   SET = 0, FnV = 0\n[ 9436.261673][    C4]   EA = 0, S1PTW = 0\n[ 9436.261675][    C4] Data abort info:\n[ 9436.261677][    C4]   ISV = 0, ISS = 0x00000044\n[ 9436.261680][    C4]   CM = 0, WnR = 1\n[ 9436.261682][    C4] [dead00000000012a] address between user and kernel address ranges\n[ 9436.261685][    C4] Internal error: Oops: 96000044 [#1] PREEMPT SMP\n[ 9436.261701][    C4] Skip md ftrace buffer dump for: 0x3a982d0\n...\n\n[ 9436.262138][    C4] CPU: 4 PID: 7795 Comm: TraceManag Tainted: G S      W  O      5.10.149-android12-9-o-g17f915d29d0c #1\n[ 9436.262141][    C4] Hardware name: Qualcomm Technologies, Inc.  (DT)\n[ 9436.262144][    C4] pstate: 22400085 (nzCv daIf +PAN -UAO +TCO BTYPE=--)\n[ 9436.262161][    C4] pc : expire_timers+0x9c/0x438\n[ 9436.262164][    C4] lr : expire_timers+0x2a4/0x438\n[ 9436.262168][    C4] sp : ffffffc010023dd0\n[ 9436.262171][    C4] x29: ffffffc010023df0 x28: ffffffd0636fdc18\n[ 9436.262178][    C4] x27: ffffffd063569dd0 x26: ffffffd063536008\n[ 9436.262182][    C4] x25: 0000000000000001 x24: ffffff88f7c69280\n[ 9436.262185][    C4] x23: 00000000000000e0 x22: dead000000000122\n[ 9436.262188][    C4] x21: 000000010022da29 x20: ffffff8af72b4e80\n[ 9436.262191][    C4] x19: ffffffc010023e50 x18: ffffffc010025038\n[ 9436.262195][    C4] x17: 0000000000000240 x16: 0000000000000201\n[ 9436.262199][    C4] x15: ffffffffffffffff x14: ffffff889f3c3100\n[ 9436.262203][    C4] x13: ffffff889f3c3100 x12: 00000000049f56b8\n[ 9436.262207][    C4] x11: 00000000049f56b8 x10: 00000000ffffffff\n[ 9436.262212][    C4] x9 : ffffffc010023e50 x8 : dead000000000122\n[ 9436.262216][    C4] x7 : ffffffffffffffff x6 : ffffffc0100239d8\n[ 9436.262220][    C4] x5 : 0000000000000000 x4 : 0000000000000101\n[ 9436.262223][    C4] x3 : 0000000000000080 x2 : ffffff8\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52635",
          "url": "https://www.suse.com/security/cve/CVE-2023-52635"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222294 for CVE-2023-52635",
          "url": "https://bugzilla.suse.com/1222294"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52635"
    },
    {
      "cve": "CVE-2023-52645",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52645"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: mediatek: fix race conditions with genpd\n\nIf the power domains are registered first with genpd and *after that*\nthe driver attempts to power them on in the probe sequence, then it is\npossible that a race condition occurs if genpd tries to power them on\nin the same time.\nThe same is valid for powering them off before unregistering them\nfrom genpd.\nAttempt to fix race conditions by first removing the domains from genpd\nand *after that* powering down domains.\nAlso first power up the domains and *after that* register them\nto genpd.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52645",
          "url": "https://www.suse.com/security/cve/CVE-2023-52645"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223033 for CVE-2023-52645",
          "url": "https://bugzilla.suse.com/1223033"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52645"
    },
    {
      "cve": "CVE-2023-52646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\naio: fix mremap after fork null-deref\n\nCommit e4a0d3e720e7 (\"aio: Make it possible to remap aio ring\") introduced\na null-deref if mremap is called on an old aio mapping after fork as\nmm-\u003eioctx_table will be set to NULL.\n\n[jmoyer@redhat.com: fix 80 column issue]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52646",
          "url": "https://www.suse.com/security/cve/CVE-2023-52646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223432 for CVE-2023-52646",
          "url": "https://bugzilla.suse.com/1223432"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52646"
    },
    {
      "cve": "CVE-2023-52652",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-52652"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nNTB: fix possible name leak in ntb_register_device()\n\nIf device_register() fails in ntb_register_device(), the device name\nallocated by dev_set_name() should be freed. As per the comment in\ndevice_register(), callers should use put_device() to give up the\nreference in the error path. So fix this by calling put_device() in the\nerror path so that the name can be freed in kobject_cleanup().\n\nAs a result of this, put_device() in the error path of\nntb_register_device() is removed and the actual error is returned.\n\n[mani: reworded commit message]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-52652",
          "url": "https://www.suse.com/security/cve/CVE-2023-52652"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223686 for CVE-2023-52652",
          "url": "https://bugzilla.suse.com/1223686"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-52652"
    },
    {
      "cve": "CVE-2023-6270",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-6270"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` global queue. This could lead to a denial of service condition or potential code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-6270",
          "url": "https://www.suse.com/security/cve/CVE-2023-6270"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218562 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1218562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218813 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1218813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221578 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1221578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221598 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1221598"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223016 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1223016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1227675 for CVE-2023-6270",
          "url": "https://bugzilla.suse.com/1227675"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-6270"
    },
    {
      "cve": "CVE-2024-0639",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-0639"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel\u0027s SCTP subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-0639",
          "url": "https://www.suse.com/security/cve/CVE-2024-0639"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218917 for CVE-2024-0639",
          "url": "https://bugzilla.suse.com/1218917"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-0639"
    },
    {
      "cve": "CVE-2024-0841",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-0841"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-0841",
          "url": "https://www.suse.com/security/cve/CVE-2024-0841"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219264 for CVE-2024-0841",
          "url": "https://bugzilla.suse.com/1219264"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-0841"
    },
    {
      "cve": "CVE-2024-2201",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-2201"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-2201",
          "url": "https://www.suse.com/security/cve/CVE-2024-2201"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212111 for CVE-2024-2201",
          "url": "https://bugzilla.suse.com/1212111"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217339 for CVE-2024-2201",
          "url": "https://bugzilla.suse.com/1217339"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-2201"
    },
    {
      "cve": "CVE-2024-22099",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-22099"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C.\n\nThis issue affects Linux kernel: v2.6.12-rc2.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-22099",
          "url": "https://www.suse.com/security/cve/CVE-2024-22099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219170 for CVE-2024-22099",
          "url": "https://bugzilla.suse.com/1219170"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-22099"
    },
    {
      "cve": "CVE-2024-23307",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-23307"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-23307",
          "url": "https://www.suse.com/security/cve/CVE-2024-23307"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219169 for CVE-2024-23307",
          "url": "https://bugzilla.suse.com/1219169"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220145 for CVE-2024-23307",
          "url": "https://bugzilla.suse.com/1220145"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-23307"
    },
    {
      "cve": "CVE-2024-23848",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-23848"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-23848",
          "url": "https://www.suse.com/security/cve/CVE-2024-23848"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219104 for CVE-2024-23848",
          "url": "https://bugzilla.suse.com/1219104"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-23848"
    },
    {
      "cve": "CVE-2024-23850",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-23850"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-23850",
          "url": "https://www.suse.com/security/cve/CVE-2024-23850"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219126 for CVE-2024-23850",
          "url": "https://bugzilla.suse.com/1219126"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-23850"
    },
    {
      "cve": "CVE-2024-26601",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26601"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: regenerate buddy after block freeing failed if under fc replay\n\nThis mostly reverts commit 6bd97bf273bd (\"ext4: remove redundant\nmb_regenerate_buddy()\") and reintroduces mb_regenerate_buddy(). Based on\ncode in mb_free_blocks(), fast commit replay can end up marking as free\nblocks that are already marked as such. This causes corruption of the\nbuddy bitmap so we need to regenerate it in that case.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26601",
          "url": "https://www.suse.com/security/cve/CVE-2024-26601"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220342 for CVE-2024-26601",
          "url": "https://bugzilla.suse.com/1220342"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26601"
    },
    {
      "cve": "CVE-2024-26610",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26610"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: fix a memory corruption\n\niwl_fw_ini_trigger_tlv::data is a pointer to a __le32, which means that\nif we copy to iwl_fw_ini_trigger_tlv::data + offset while offset is in\nbytes, we\u0027ll write past the buffer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26610",
          "url": "https://www.suse.com/security/cve/CVE-2024-26610"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221299 for CVE-2024-26610",
          "url": "https://bugzilla.suse.com/1221299"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221302 for CVE-2024-26610",
          "url": "https://bugzilla.suse.com/1221302"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-26610"
    },
    {
      "cve": "CVE-2024-26656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix use-after-free bug\n\nThe bug can be triggered by sending a single amdgpu_gem_userptr_ioctl\nto the AMDGPU DRM driver on any ASICs with an invalid address and size.\nThe bug was reported by Joonkyo Jung \u003cjoonkyoj@yonsei.ac.kr\u003e.\nFor example the following code:\n\nstatic void Syzkaller1(int fd)\n{\n\tstruct drm_amdgpu_gem_userptr arg;\n\tint ret;\n\n\targ.addr = 0xffffffffffff0000;\n\targ.size = 0x80000000; /*2 Gb*/\n\targ.flags = 0x7;\n\tret = drmIoctl(fd, 0xc1186451/*amdgpu_gem_userptr_ioctl*/, \u0026arg);\n}\n\nDue to the address and size are not valid there is a failure in\namdgpu_hmm_register-\u003emmu_interval_notifier_insert-\u003e__mmu_interval_notifier_insert-\u003e\ncheck_shl_overflow, but we even the amdgpu_hmm_register failure we still call\namdgpu_hmm_unregister into  amdgpu_gem_object_free which causes access to a bad address.\nThe following stack is below when the issue is reproduced when Kazan is enabled:\n\n[  +0.000014] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[  +0.000009] RIP: 0010:mmu_interval_notifier_remove+0x327/0x340\n[  +0.000017] Code: ff ff 49 89 44 24 08 48 b8 00 01 00 00 00 00 ad de 4c 89 f7 49 89 47 40 48 83 c0 22 49 89 47 48 e8 ce d1 2d 01 e9 32 ff ff ff \u003c0f\u003e 0b e9 16 ff ff ff 4c 89 ef e8 fa 14 b3 ff e9 36 ff ff ff e8 80\n[  +0.000014] RSP: 0018:ffffc90002657988 EFLAGS: 00010246\n[  +0.000013] RAX: 0000000000000000 RBX: 1ffff920004caf35 RCX: ffffffff8160565b\n[  +0.000011] RDX: dffffc0000000000 RSI: 0000000000000004 RDI: ffff8881a9f78260\n[  +0.000010] RBP: ffffc90002657a70 R08: 0000000000000001 R09: fffff520004caf25\n[  +0.000010] R10: 0000000000000003 R11: ffffffff8161d1d6 R12: ffff88810e988c00\n[  +0.000010] R13: ffff888126fb5a00 R14: ffff88810e988c0c R15: ffff8881a9f78260\n[  +0.000011] FS:  00007ff9ec848540(0000) GS:ffff8883cc880000(0000) knlGS:0000000000000000\n[  +0.000012] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[  +0.000010] CR2: 000055b3f7e14328 CR3: 00000001b5770000 CR4: 0000000000350ef0\n[  +0.000010] Call Trace:\n[  +0.000006]  \u003cTASK\u003e\n[  +0.000007]  ? show_regs+0x6a/0x80\n[  +0.000018]  ? __warn+0xa5/0x1b0\n[  +0.000019]  ? mmu_interval_notifier_remove+0x327/0x340\n[  +0.000018]  ? report_bug+0x24a/0x290\n[  +0.000022]  ? handle_bug+0x46/0x90\n[  +0.000015]  ? exc_invalid_op+0x19/0x50\n[  +0.000016]  ? asm_exc_invalid_op+0x1b/0x20\n[  +0.000017]  ? kasan_save_stack+0x26/0x50\n[  +0.000017]  ? mmu_interval_notifier_remove+0x23b/0x340\n[  +0.000019]  ? mmu_interval_notifier_remove+0x327/0x340\n[  +0.000019]  ? mmu_interval_notifier_remove+0x23b/0x340\n[  +0.000020]  ? __pfx_mmu_interval_notifier_remove+0x10/0x10\n[  +0.000017]  ? kasan_save_alloc_info+0x1e/0x30\n[  +0.000018]  ? srso_return_thunk+0x5/0x5f\n[  +0.000014]  ? __kasan_kmalloc+0xb1/0xc0\n[  +0.000018]  ? srso_return_thunk+0x5/0x5f\n[  +0.000013]  ? __kasan_check_read+0x11/0x20\n[  +0.000020]  amdgpu_hmm_unregister+0x34/0x50 [amdgpu]\n[  +0.004695]  amdgpu_gem_object_free+0x66/0xa0 [amdgpu]\n[  +0.004534]  ? __pfx_amdgpu_gem_object_free+0x10/0x10 [amdgpu]\n[  +0.004291]  ? do_syscall_64+0x5f/0xe0\n[  +0.000023]  ? srso_return_thunk+0x5/0x5f\n[  +0.000017]  drm_gem_object_free+0x3b/0x50 [drm]\n[  +0.000489]  amdgpu_gem_userptr_ioctl+0x306/0x500 [amdgpu]\n[  +0.004295]  ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu]\n[  +0.004270]  ? srso_return_thunk+0x5/0x5f\n[  +0.000014]  ? __this_cpu_preempt_check+0x13/0x20\n[  +0.000015]  ? srso_return_thunk+0x5/0x5f\n[  +0.000013]  ? sysvec_apic_timer_interrupt+0x57/0xc0\n[  +0.000020]  ? srso_return_thunk+0x5/0x5f\n[  +0.000014]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20\n[  +0.000022]  ? drm_ioctl_kernel+0x17b/0x1f0 [drm]\n[  +0.000496]  ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu]\n[  +0.004272]  ? drm_ioctl_kernel+0x190/0x1f0 [drm]\n[  +0.000492]  drm_ioctl_kernel+0x140/0x1f0 [drm]\n[  +0.000497]  ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu]\n[  +0.004297]  ? __pfx_drm_ioctl_kernel+0x10/0x10 [d\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26656",
          "url": "https://www.suse.com/security/cve/CVE-2024-26656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222307 for CVE-2024-26656",
          "url": "https://bugzilla.suse.com/1222307"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26656"
    },
    {
      "cve": "CVE-2024-26671",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26671"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: fix IO hang from sbitmap wakeup race\n\nIn blk_mq_mark_tag_wait(), __add_wait_queue() may be re-ordered\nwith the following blk_mq_get_driver_tag() in case of getting driver\ntag failure.\n\nThen in __sbitmap_queue_wake_up(), waitqueue_active() may not observe\nthe added waiter in blk_mq_mark_tag_wait() and wake up nothing, meantime\nblk_mq_mark_tag_wait() can\u0027t get driver tag successfully.\n\nThis issue can be reproduced by running the following test in loop, and\nfio hang can be observed in \u003c 30min when running it on my test VM\nin laptop.\n\n\tmodprobe -r scsi_debug\n\tmodprobe scsi_debug delay=0 dev_size_mb=4096 max_queue=1 host_max_queue=1 submit_queues=4\n\tdev=`ls -d /sys/bus/pseudo/drivers/scsi_debug/adapter*/host*/target*/*/block/* | head -1 | xargs basename`\n\tfio --filename=/dev/\"$dev\" --direct=1 --rw=randrw --bs=4k --iodepth=1 \\\n       \t\t--runtime=100 --numjobs=40 --time_based --name=test \\\n        \t--ioengine=libaio\n\nFix the issue by adding one explicit barrier in blk_mq_mark_tag_wait(), which\nis just fine in case of running out of tag.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26671",
          "url": "https://www.suse.com/security/cve/CVE-2024-26671"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222357 for CVE-2024-26671",
          "url": "https://bugzilla.suse.com/1222357"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26671"
    },
    {
      "cve": "CVE-2024-26673",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26673"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations\n\n- Disallow families other than NFPROTO_{IPV4,IPV6,INET}.\n- Disallow layer 4 protocol with no ports, since destination port is a\n  mandatory attribute for this object.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26673",
          "url": "https://www.suse.com/security/cve/CVE-2024-26673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222368 for CVE-2024-26673",
          "url": "https://bugzilla.suse.com/1222368"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26673"
    },
    {
      "cve": "CVE-2024-26675",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26675"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp_async: limit MRU to 64K\n\nsyzbot triggered a warning [1] in __alloc_pages():\n\nWARN_ON_ONCE_GFP(order \u003e MAX_PAGE_ORDER, gfp)\n\nWillem fixed a similar issue in commit c0a2a1b0d631 (\"ppp: limit MRU to 64K\")\n\nAdopt the same sanity check for ppp_async_ioctl(PPPIOCSMRU)\n\n[1]:\n\n WARNING: CPU: 1 PID: 11 at mm/page_alloc.c:4543 __alloc_pages+0x308/0x698 mm/page_alloc.c:4543\nModules linked in:\nCPU: 1 PID: 11 Comm: kworker/u4:0 Not tainted 6.8.0-rc2-syzkaller-g41bccc98fb79 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\nWorkqueue: events_unbound flush_to_ldisc\npstate: 204000c5 (nzCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __alloc_pages+0x308/0x698 mm/page_alloc.c:4543\n lr : __alloc_pages+0xc8/0x698 mm/page_alloc.c:4537\nsp : ffff800093967580\nx29: ffff800093967660 x28: ffff8000939675a0 x27: dfff800000000000\nx26: ffff70001272ceb4 x25: 0000000000000000 x24: ffff8000939675c0\nx23: 0000000000000000 x22: 0000000000060820 x21: 1ffff0001272ceb8\nx20: ffff8000939675e0 x19: 0000000000000010 x18: ffff800093967120\nx17: ffff800083bded5c x16: ffff80008ac97500 x15: 0000000000000005\nx14: 1ffff0001272cebc x13: 0000000000000000 x12: 0000000000000000\nx11: ffff70001272cec1 x10: 1ffff0001272cec0 x9 : 0000000000000001\nx8 : ffff800091c91000 x7 : 0000000000000000 x6 : 000000000000003f\nx5 : 00000000ffffffff x4 : 0000000000000000 x3 : 0000000000000020\nx2 : 0000000000000008 x1 : 0000000000000000 x0 : ffff8000939675e0\nCall trace:\n  __alloc_pages+0x308/0x698 mm/page_alloc.c:4543\n  __alloc_pages_node include/linux/gfp.h:238 [inline]\n  alloc_pages_node include/linux/gfp.h:261 [inline]\n  __kmalloc_large_node+0xbc/0x1fc mm/slub.c:3926\n  __do_kmalloc_node mm/slub.c:3969 [inline]\n  __kmalloc_node_track_caller+0x418/0x620 mm/slub.c:4001\n  kmalloc_reserve+0x17c/0x23c net/core/skbuff.c:590\n  __alloc_skb+0x1c8/0x3d8 net/core/skbuff.c:651\n  __netdev_alloc_skb+0xb8/0x3e8 net/core/skbuff.c:715\n  netdev_alloc_skb include/linux/skbuff.h:3235 [inline]\n  dev_alloc_skb include/linux/skbuff.h:3248 [inline]\n  ppp_async_input drivers/net/ppp/ppp_async.c:863 [inline]\n  ppp_asynctty_receive+0x588/0x186c drivers/net/ppp/ppp_async.c:341\n  tty_ldisc_receive_buf+0x12c/0x15c drivers/tty/tty_buffer.c:390\n  tty_port_default_receive_buf+0x74/0xac drivers/tty/tty_port.c:37\n  receive_buf drivers/tty/tty_buffer.c:444 [inline]\n  flush_to_ldisc+0x284/0x6e4 drivers/tty/tty_buffer.c:494\n  process_one_work+0x694/0x1204 kernel/workqueue.c:2633\n  process_scheduled_works kernel/workqueue.c:2706 [inline]\n  worker_thread+0x938/0xef4 kernel/workqueue.c:2787\n  kthread+0x288/0x310 kernel/kthread.c:388\n  ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:860",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26675",
          "url": "https://www.suse.com/security/cve/CVE-2024-26675"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222379 for CVE-2024-26675",
          "url": "https://bugzilla.suse.com/1222379"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26675"
    },
    {
      "cve": "CVE-2024-26679",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26679"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: read sk-\u003esk_family once in inet_recv_error()\n\ninet_recv_error() is called without holding the socket lock.\n\nIPv6 socket could mutate to IPv4 with IPV6_ADDRFORM\nsocket option and trigger a KCSAN warning.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26679",
          "url": "https://www.suse.com/security/cve/CVE-2024-26679"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222385 for CVE-2024-26679",
          "url": "https://bugzilla.suse.com/1222385"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26679"
    },
    {
      "cve": "CVE-2024-26687",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26687"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/events: close evtchn after mapping cleanup\n\nshutdown_pirq and startup_pirq are not taking the\nirq_mapping_update_lock because they can\u0027t due to lock inversion. Both\nare called with the irq_desc-\u003elock being taking. The lock order,\nhowever, is first irq_mapping_update_lock and then irq_desc-\u003elock.\n\nThis opens multiple races:\n- shutdown_pirq can be interrupted by a function that allocates an event\n  channel:\n\n  CPU0                        CPU1\n  shutdown_pirq {\n    xen_evtchn_close(e)\n                              __startup_pirq {\n                                EVTCHNOP_bind_pirq\n                                  -\u003e returns just freed evtchn e\n                                set_evtchn_to_irq(e, irq)\n                              }\n    xen_irq_info_cleanup() {\n      set_evtchn_to_irq(e, -1)\n    }\n  }\n\n  Assume here event channel e refers here to the same event channel\n  number.\n  After this race the evtchn_to_irq mapping for e is invalid (-1).\n\n- __startup_pirq races with __unbind_from_irq in a similar way. Because\n  __startup_pirq doesn\u0027t take irq_mapping_update_lock it can grab the\n  evtchn that __unbind_from_irq is currently freeing and cleaning up. In\n  this case even though the event channel is allocated, its mapping can\n  be unset in evtchn_to_irq.\n\nThe fix is to first cleanup the mappings and then close the event\nchannel. In this way, when an event channel gets allocated it\u0027s\npotential previous evtchn_to_irq mappings are guaranteed to be unset already.\nThis is also the reverse order of the allocation where first the event\nchannel is allocated and then the mappings are setup.\n\nOn a 5.10 kernel prior to commit 3fcdaf3d7634 (\"xen/events: modify internal\n[un]bind interfaces\"), we hit a BUG like the following during probing of NVMe\ndevices. The issue is that during nvme_setup_io_queues, pci_free_irq\nis called for every device which results in a call to shutdown_pirq.\nWith many nvme devices it\u0027s therefore likely to hit this race during\nboot because there will be multiple calls to shutdown_pirq and\nstartup_pirq are running potentially in parallel.\n\n  ------------[ cut here ]------------\n  blkfront: xvda: barrier or flush: disabled; persistent grants: enabled; indirect descriptors: enabled; bounce buffer: enabled\n  kernel BUG at drivers/xen/events/events_base.c:499!\n  invalid opcode: 0000 [#1] SMP PTI\n  CPU: 44 PID: 375 Comm: kworker/u257:23 Not tainted 5.10.201-191.748.amzn2.x86_64 #1\n  Hardware name: Xen HVM domU, BIOS 4.11.amazon 08/24/2006\n  Workqueue: nvme-reset-wq nvme_reset_work\n  RIP: 0010:bind_evtchn_to_cpu+0xdf/0xf0\n  Code: 5d 41 5e c3 cc cc cc cc 44 89 f7 e8 2b 55 ad ff 49 89 c5 48 85 c0 0f 84 64 ff ff ff 4c 8b 68 30 41 83 fe ff 0f 85 60 ff ff ff \u003c0f\u003e 0b 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 0f 1f 44 00 00\n  RSP: 0000:ffffc9000d533b08 EFLAGS: 00010046\n  RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000006\n  RDX: 0000000000000028 RSI: 00000000ffffffff RDI: 00000000ffffffff\n  RBP: ffff888107419680 R08: 0000000000000000 R09: ffffffff82d72b00\n  R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000001ed\n  R13: 0000000000000000 R14: 00000000ffffffff R15: 0000000000000002\n  FS:  0000000000000000(0000) GS:ffff88bc8b500000(0000) knlGS:0000000000000000\n  CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n  CR2: 0000000000000000 CR3: 0000000002610001 CR4: 00000000001706e0\n  DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n  DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n  Call Trace:\n   ? show_trace_log_lvl+0x1c1/0x2d9\n   ? show_trace_log_lvl+0x1c1/0x2d9\n   ? set_affinity_irq+0xdc/0x1c0\n   ? __die_body.cold+0x8/0xd\n   ? die+0x2b/0x50\n   ? do_trap+0x90/0x110\n   ? bind_evtchn_to_cpu+0xdf/0xf0\n   ? do_error_trap+0x65/0x80\n   ? bind_evtchn_to_cpu+0xdf/0xf0\n   ? exc_invalid_op+0x4e/0x70\n   ? bind_evtchn_to_cpu+0xdf/0xf0\n   ? asm_exc_invalid_op+0x12/0x20\n   ? bind_evtchn_to_cpu+0xdf/0x\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26687",
          "url": "https://www.suse.com/security/cve/CVE-2024-26687"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222435 for CVE-2024-26687",
          "url": "https://bugzilla.suse.com/1222435"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26687"
    },
    {
      "cve": "CVE-2024-26688",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26688"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super\n\nWhen configuring a hugetlb filesystem via the fsconfig() syscall, there is\na possible NULL dereference in hugetlbfs_fill_super() caused by assigning\nNULL to ctx-\u003ehstate in hugetlbfs_parse_param() when the requested pagesize\nis non valid.\n\nE.g: Taking the following steps:\n\n     fd = fsopen(\"hugetlbfs\", FSOPEN_CLOEXEC);\n     fsconfig(fd, FSCONFIG_SET_STRING, \"pagesize\", \"1024\", 0);\n     fsconfig(fd, FSCONFIG_CMD_CREATE, NULL, NULL, 0);\n\nGiven that the requested \"pagesize\" is invalid, ctxt-\u003ehstate will be replaced\nwith NULL, losing its previous value, and we will print an error:\n\n ...\n ...\n case Opt_pagesize:\n ps = memparse(param-\u003estring, \u0026rest);\n ctx-\u003ehstate = h;\n if (!ctx-\u003ehstate) {\n         pr_err(\"Unsupported page size %lu MB\\n\", ps / SZ_1M);\n         return -EINVAL;\n }\n return 0;\n ...\n ...\n\nThis is a problem because later on, we will dereference ctxt-\u003ehstate in\nhugetlbfs_fill_super()\n\n ...\n ...\n sb-\u003es_blocksize = huge_page_size(ctx-\u003ehstate);\n ...\n ...\n\nCausing below Oops.\n\nFix this by replacing cxt-\u003ehstate value only when then pagesize is known\nto be valid.\n\n kernel: hugetlbfs: Unsupported page size 0 MB\n kernel: BUG: kernel NULL pointer dereference, address: 0000000000000028\n kernel: #PF: supervisor read access in kernel mode\n kernel: #PF: error_code(0x0000) - not-present page\n kernel: PGD 800000010f66c067 P4D 800000010f66c067 PUD 1b22f8067 PMD 0\n kernel: Oops: 0000 [#1] PREEMPT SMP PTI\n kernel: CPU: 4 PID: 5659 Comm: syscall Tainted: G            E      6.8.0-rc2-default+ #22 5a47c3fef76212addcc6eb71344aabc35190ae8f\n kernel: Hardware name: Intel Corp. GROVEPORT/GROVEPORT, BIOS GVPRCRB1.86B.0016.D04.1705030402 05/03/2017\n kernel: RIP: 0010:hugetlbfs_fill_super+0xb4/0x1a0\n kernel: Code: 48 8b 3b e8 3e c6 ed ff 48 85 c0 48 89 45 20 0f 84 d6 00 00 00 48 b8 ff ff ff ff ff ff ff 7f 4c 89 e7 49 89 44 24 20 48 8b 03 \u003c8b\u003e 48 28 b8 00 10 00 00 48 d3 e0 49 89 44 24 18 48 8b 03 8b 40 28\n kernel: RSP: 0018:ffffbe9960fcbd48 EFLAGS: 00010246\n kernel: RAX: 0000000000000000 RBX: ffff9af5272ae780 RCX: 0000000000372004\n kernel: RDX: ffffffffffffffff RSI: ffffffffffffffff RDI: ffff9af555e9b000\n kernel: RBP: ffff9af52ee66b00 R08: 0000000000000040 R09: 0000000000370004\n kernel: R10: ffffbe9960fcbd48 R11: 0000000000000040 R12: ffff9af555e9b000\n kernel: R13: ffffffffa66b86c0 R14: ffff9af507d2f400 R15: ffff9af507d2f400\n kernel: FS:  00007ffbc0ba4740(0000) GS:ffff9b0bd7000000(0000) knlGS:0000000000000000\n kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n kernel: CR2: 0000000000000028 CR3: 00000001b1ee0000 CR4: 00000000001506f0\n kernel: Call Trace:\n kernel:  \u003cTASK\u003e\n kernel:  ? __die_body+0x1a/0x60\n kernel:  ? page_fault_oops+0x16f/0x4a0\n kernel:  ? search_bpf_extables+0x65/0x70\n kernel:  ? fixup_exception+0x22/0x310\n kernel:  ? exc_page_fault+0x69/0x150\n kernel:  ? asm_exc_page_fault+0x22/0x30\n kernel:  ? __pfx_hugetlbfs_fill_super+0x10/0x10\n kernel:  ? hugetlbfs_fill_super+0xb4/0x1a0\n kernel:  ? hugetlbfs_fill_super+0x28/0x1a0\n kernel:  ? __pfx_hugetlbfs_fill_super+0x10/0x10\n kernel:  vfs_get_super+0x40/0xa0\n kernel:  ? __pfx_bpf_lsm_capable+0x10/0x10\n kernel:  vfs_get_tree+0x25/0xd0\n kernel:  vfs_cmd_create+0x64/0xe0\n kernel:  __x64_sys_fsconfig+0x395/0x410\n kernel:  do_syscall_64+0x80/0x160\n kernel:  ? syscall_exit_to_user_mode+0x82/0x240\n kernel:  ? do_syscall_64+0x8d/0x160\n kernel:  ? syscall_exit_to_user_mode+0x82/0x240\n kernel:  ? do_syscall_64+0x8d/0x160\n kernel:  ? exc_page_fault+0x69/0x150\n kernel:  entry_SYSCALL_64_after_hwframe+0x6e/0x76\n kernel: RIP: 0033:0x7ffbc0cb87c9\n kernel: Code: 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 97 96 0d 00 f7 d8 64 89 01 48\n kernel: RSP: 002b:00007ffc29d2f388 EFLAGS: 00000206 ORIG_RAX: 00000000000001af\n kernel: RAX: fffffffffff\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26688",
          "url": "https://www.suse.com/security/cve/CVE-2024-26688"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222482 for CVE-2024-26688",
          "url": "https://bugzilla.suse.com/1222482"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26688"
    },
    {
      "cve": "CVE-2024-26700",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26700"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix MST Null Ptr for RV\n\nThe change try to fix below error specific to RV platform:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 4 PID: 917 Comm: sway Not tainted 6.3.9-arch1-1 #1 124dc55df4f5272ccb409f39ef4872fc2b3376a2\nHardware name: LENOVO 20NKS01Y00/20NKS01Y00, BIOS R12ET61W(1.31 ) 07/28/2022\nRIP: 0010:drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper]\nCode: 01 00 00 48 8b 85 60 05 00 00 48 63 80 88 00 00 00 3b 43 28 0f 8d 2e 01 00 00 48 8b 53 30 48 8d 04 80 48 8d 04 c2 48 8b 40 18 \u003c48\u003e 8\u003e\nRSP: 0018:ffff960cc2df77d8 EFLAGS: 00010293\nRAX: 0000000000000000 RBX: ffff8afb87e81280 RCX: 0000000000000224\nRDX: ffff8afb9ee37c00 RSI: ffff8afb8da1a578 RDI: ffff8afb87e81280\nRBP: ffff8afb83d67000 R08: 0000000000000001 R09: ffff8afb9652f850\nR10: ffff960cc2df7908 R11: 0000000000000002 R12: 0000000000000000\nR13: ffff8afb8d7688a0 R14: ffff8afb8da1a578 R15: 0000000000000224\nFS:  00007f4dac35ce00(0000) GS:ffff8afe30b00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000008 CR3: 000000010ddc6000 CR4: 00000000003506e0\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x23/0x70\n ? page_fault_oops+0x171/0x4e0\n ? plist_add+0xbe/0x100\n ? exc_page_fault+0x7c/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026]\n ? drm_dp_atomic_find_time_slots+0x28/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026]\n compute_mst_dsc_configs_for_link+0x2ff/0xa40 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n ? fill_plane_buffer_attributes+0x419/0x510 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n compute_mst_dsc_configs_for_state+0x1e1/0x250 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n amdgpu_dm_atomic_check+0xecd/0x1190 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n drm_atomic_check_only+0x5c5/0xa40\n drm_mode_atomic_ioctl+0x76e/0xbc0\n ? _copy_to_user+0x25/0x30\n ? drm_ioctl+0x296/0x4b0\n ? __pfx_drm_mode_atomic_ioctl+0x10/0x10\n drm_ioctl_kernel+0xcd/0x170\n drm_ioctl+0x26d/0x4b0\n ? __pfx_drm_mode_atomic_ioctl+0x10/0x10\n amdgpu_drm_ioctl+0x4e/0x90 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n __x64_sys_ioctl+0x94/0xd0\n do_syscall_64+0x60/0x90\n ? do_syscall_64+0x6c/0x90\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\nRIP: 0033:0x7f4dad17f76f\nCode: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 \u003c89\u003e c\u003e\nRSP: 002b:00007ffd9ae859f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 000055e255a55900 RCX: 00007f4dad17f76f\nRDX: 00007ffd9ae85a90 RSI: 00000000c03864bc RDI: 000000000000000b\nRBP: 00007ffd9ae85a90 R08: 0000000000000003 R09: 0000000000000003\nR10: 0000000000000000 R11: 0000000000000246 R12: 00000000c03864bc\nR13: 000000000000000b R14: 000055e255a7fc60 R15: 000055e255a01eb0\n \u003c/TASK\u003e\nModules linked in: rfcomm snd_seq_dummy snd_hrtimer snd_seq snd_seq_device ccm cmac algif_hash algif_skcipher af_alg joydev mousedev bnep \u003e\n typec libphy k10temp ipmi_msghandler roles i2c_scmi acpi_cpufreq mac_hid nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_mas\u003e\nCR2: 0000000000000008\n---[ end trace 0000000000000000 ]---\nRIP: 0010:drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper]\nCode: 01 00 00 48 8b 85 60 05 00 00 48 63 80 88 00 00 00 3b 43 28 0f 8d 2e 01 00 00 48 8b 53 30 48 8d 04 80 48 8d 04 c2 48 8b 40 18 \u003c48\u003e 8\u003e\nRSP: 0018:ffff960cc2df77d8 EFLAGS: 00010293\nRAX: 0000000000000000 RBX: ffff8afb87e81280 RCX: 0000000000000224\nRDX: ffff8afb9ee37c00 RSI: ffff8afb8da1a578 RDI: ffff8afb87e81280\nRBP: ffff8afb83d67000 R08: 0000000000000001 R09: ffff8afb9652f850\nR10: ffff960cc2df7908 R11: 0000000000000002 R12: 0000000000000000\nR13: ffff8afb8d7688a0 R14: ffff8afb8da1a578 R15: 0000000000000224\nFS:  00007f4dac35ce00(0000) GS:ffff8afe30b00000(0000\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26700",
          "url": "https://www.suse.com/security/cve/CVE-2024-26700"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222870 for CVE-2024-26700",
          "url": "https://bugzilla.suse.com/1222870"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26700"
    },
    {
      "cve": "CVE-2024-26702",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26702"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: magnetometer: rm3100: add boundary check for the value read from RM3100_REG_TMRC\n\nRecently, we encounter kernel crash in function rm3100_common_probe\ncaused by out of bound access of array rm3100_samp_rates (because of\nunderlying hardware failures). Add boundary check to prevent out of\nbound access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26702",
          "url": "https://www.suse.com/security/cve/CVE-2024-26702"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222424 for CVE-2024-26702",
          "url": "https://bugzilla.suse.com/1222424"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26702"
    },
    {
      "cve": "CVE-2024-26733",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26733"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: Prevent overflow in arp_req_get().\n\nsyzkaller reported an overflown write in arp_req_get(). [0]\n\nWhen ioctl(SIOCGARP) is issued, arp_req_get() looks up an neighbour\nentry and copies neigh-\u003eha to struct arpreq.arp_ha.sa_data.\n\nThe arp_ha here is struct sockaddr, not struct sockaddr_storage, so\nthe sa_data buffer is just 14 bytes.\n\nIn the splat below, 2 bytes are overflown to the next int field,\narp_flags.  We initialise the field just after the memcpy(), so it\u0027s\nnot a problem.\n\nHowever, when dev-\u003eaddr_len is greater than 22 (e.g. MAX_ADDR_LEN),\narp_netmask is overwritten, which could be set as htonl(0xFFFFFFFFUL)\nin arp_ioctl() before calling arp_req_get().\n\nTo avoid the overflow, let\u0027s limit the max length of memcpy().\n\nNote that commit b5f0de6df6dc (\"net: dev: Convert sa_data to flexible\narray in struct sockaddr\") just silenced syzkaller.\n\n[0]:\nmemcpy: detected field-spanning write (size 16) of single field \"r-\u003earp_ha.sa_data\" at net/ipv4/arp.c:1128 (size 14)\nWARNING: CPU: 0 PID: 144638 at net/ipv4/arp.c:1128 arp_req_get+0x411/0x4a0 net/ipv4/arp.c:1128\nModules linked in:\nCPU: 0 PID: 144638 Comm: syz-executor.4 Not tainted 6.1.74 #31\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.0-debian-1.16.0-5 04/01/2014\nRIP: 0010:arp_req_get+0x411/0x4a0 net/ipv4/arp.c:1128\nCode: fd ff ff e8 41 42 de fb b9 0e 00 00 00 4c 89 fe 48 c7 c2 20 6d ab 87 48 c7 c7 80 6d ab 87 c6 05 25 af 72 04 01 e8 5f 8d ad fb \u003c0f\u003e 0b e9 6c fd ff ff e8 13 42 de fb be 03 00 00 00 4c 89 e7 e8 a6\nRSP: 0018:ffffc900050b7998 EFLAGS: 00010286\nRAX: 0000000000000000 RBX: ffff88803a815000 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: ffffffff8641a44a RDI: 0000000000000001\nRBP: ffffc900050b7a98 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000000 R11: 203a7970636d656d R12: ffff888039c54000\nR13: 1ffff92000a16f37 R14: ffff88803a815084 R15: 0000000000000010\nFS:  00007f172bf306c0(0000) GS:ffff88805aa00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f172b3569f0 CR3: 0000000057f12005 CR4: 0000000000770ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n arp_ioctl+0x33f/0x4b0 net/ipv4/arp.c:1261\n inet_ioctl+0x314/0x3a0 net/ipv4/af_inet.c:981\n sock_do_ioctl+0xdf/0x260 net/socket.c:1204\n sock_ioctl+0x3ef/0x650 net/socket.c:1321\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x18e/0x220 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x37/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x64/0xce\nRIP: 0033:0x7f172b262b8d\nCode: 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f172bf300b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 00007f172b3abf80 RCX: 00007f172b262b8d\nRDX: 0000000020000000 RSI: 0000000000008954 RDI: 0000000000000003\nRBP: 00007f172b2d3493 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007f172b3abf80 R15: 00007f172bf10000\n \u003c/TASK\u003e",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26733",
          "url": "https://www.suse.com/security/cve/CVE-2024-26733"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222585 for CVE-2024-26733",
          "url": "https://bugzilla.suse.com/1222585"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26733"
    },
    {
      "cve": "CVE-2024-26739",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26739"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_mirred: don\u0027t override retval if we already lost the skb\n\nIf we\u0027re redirecting the skb, and haven\u0027t called tcf_mirred_forward(),\nyet, we need to tell the core to drop the skb by setting the retcode\nto SHOT. If we have called tcf_mirred_forward(), however, the skb\nis out of our hands and returning SHOT will lead to UaF.\n\nMove the retval override to the error path which actually need it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26739",
          "url": "https://www.suse.com/security/cve/CVE-2024-26739"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222559 for CVE-2024-26739",
          "url": "https://bugzilla.suse.com/1222559"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26739"
    },
    {
      "cve": "CVE-2024-26764",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26764"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio\n\nIf kiocb_set_cancel_fn() is called for I/O submitted via io_uring, the\nfollowing kernel warning appears:\n\nWARNING: CPU: 3 PID: 368 at fs/aio.c:598 kiocb_set_cancel_fn+0x9c/0xa8\nCall trace:\n kiocb_set_cancel_fn+0x9c/0xa8\n ffs_epfile_read_iter+0x144/0x1d0\n io_read+0x19c/0x498\n io_issue_sqe+0x118/0x27c\n io_submit_sqes+0x25c/0x5fc\n __arm64_sys_io_uring_enter+0x104/0xab0\n invoke_syscall+0x58/0x11c\n el0_svc_common+0xb4/0xf4\n do_el0_svc+0x2c/0xb0\n el0_svc+0x2c/0xa4\n el0t_64_sync_handler+0x68/0xb4\n el0t_64_sync+0x1a4/0x1a8\n\nFix this by setting the IOCB_AIO_RW flag for read and write I/O that is\nsubmitted by libaio.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26764",
          "url": "https://www.suse.com/security/cve/CVE-2024-26764"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222721 for CVE-2024-26764",
          "url": "https://bugzilla.suse.com/1222721"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26764"
    },
    {
      "cve": "CVE-2024-26766",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26766"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/hfi1: Fix sdma.h tx-\u003enum_descs off-by-one error\n\nUnfortunately the commit `fd8958efe877` introduced another error\ncausing the `descs` array to overflow. This reults in further crashes\neasily reproducible by `sendmsg` system call.\n\n[ 1080.836473] general protection fault, probably for non-canonical address 0x400300015528b00a: 0000 [#1] PREEMPT SMP PTI\n[ 1080.869326] RIP: 0010:hfi1_ipoib_build_ib_tx_headers.constprop.0+0xe1/0x2b0 [hfi1]\n--\n[ 1080.974535] Call Trace:\n[ 1080.976990]  \u003cTASK\u003e\n[ 1081.021929]  hfi1_ipoib_send_dma_common+0x7a/0x2e0 [hfi1]\n[ 1081.027364]  hfi1_ipoib_send_dma_list+0x62/0x270 [hfi1]\n[ 1081.032633]  hfi1_ipoib_send+0x112/0x300 [hfi1]\n[ 1081.042001]  ipoib_start_xmit+0x2a9/0x2d0 [ib_ipoib]\n[ 1081.046978]  dev_hard_start_xmit+0xc4/0x210\n--\n[ 1081.148347]  __sys_sendmsg+0x59/0xa0\n\ncrash\u003e ipoib_txreq 0xffff9cfeba229f00\nstruct ipoib_txreq {\n  txreq = {\n    list = {\n      next = 0xffff9cfeba229f00,\n      prev = 0xffff9cfeba229f00\n    },\n    descp = 0xffff9cfeba229f40,\n    coalesce_buf = 0x0,\n    wait = 0xffff9cfea4e69a48,\n    complete = 0xffffffffc0fe0760 \u003chfi1_ipoib_sdma_complete\u003e,\n    packet_len = 0x46d,\n    tlen = 0x0,\n    num_desc = 0x0,\n    desc_limit = 0x6,\n    next_descq_idx = 0x45c,\n    coalesce_idx = 0x0,\n    flags = 0x0,\n    descs = {{\n        qw = {0x8024000120dffb00, 0x4}  # SDMA_DESC0_FIRST_DESC_FLAG (bit 63)\n      }, {\n        qw = {  0x3800014231b108, 0x4}\n      }, {\n        qw = { 0x310000e4ee0fcf0, 0x8}\n      }, {\n        qw = {  0x3000012e9f8000, 0x8}\n      }, {\n        qw = {  0x59000dfb9d0000, 0x8}\n      }, {\n        qw = {  0x78000e02e40000, 0x8}\n      }}\n  },\n  sdma_hdr =  0x400300015528b000,  \u003c\u003c\u003c invalid pointer in the tx request structure\n  sdma_status = 0x0,                   SDMA_DESC0_LAST_DESC_FLAG (bit 62)\n  complete = 0x0,\n  priv = 0x0,\n  txq = 0xffff9cfea4e69880,\n  skb = 0xffff9d099809f400\n}\n\nIf an SDMA send consists of exactly 6 descriptors and requires dword\npadding (in the 7th descriptor), the sdma_txreq descriptor array is not\nproperly expanded and the packet will overflow into the container\nstructure. This results in a panic when the send completion runs. The\nexact panic varies depending on what elements of the container structure\nget corrupted. The fix is to use the correct expression in\n_pad_sdma_tx_descs() to test the need to expand the descriptor array.\n\nWith this patch the crashes are no longer reproducible and the machine is\nstable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26766",
          "url": "https://www.suse.com/security/cve/CVE-2024-26766"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222726 for CVE-2024-26766",
          "url": "https://bugzilla.suse.com/1222726"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222882 for CVE-2024-26766",
          "url": "https://bugzilla.suse.com/1222882"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-26766"
    },
    {
      "cve": "CVE-2024-26772",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26772"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal()\n\nPlaces the logic for checking if the group\u0027s block bitmap is corrupt under\nthe protection of the group lock to avoid allocating blocks from the group\nwith a corrupted block bitmap.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26772",
          "url": "https://www.suse.com/security/cve/CVE-2024-26772"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222613 for CVE-2024-26772",
          "url": "https://bugzilla.suse.com/1222613"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26772"
    },
    {
      "cve": "CVE-2024-26773",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26773"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found()\n\nDetermine if the group block bitmap is corrupted before using ac_b_ex in\next4_mb_try_best_found() to avoid allocating blocks from a group with a\ncorrupted block bitmap in the following concurrency and making the\nsituation worse.\n\next4_mb_regular_allocator\n  ext4_lock_group(sb, group)\n  ext4_mb_good_group\n   // check if the group bbitmap is corrupted\n  ext4_mb_complex_scan_group\n   // Scan group gets ac_b_ex but doesn\u0027t use it\n  ext4_unlock_group(sb, group)\n                           ext4_mark_group_bitmap_corrupted(group)\n                           // The block bitmap was corrupted during\n                           // the group unlock gap.\n  ext4_mb_try_best_found\n    ext4_lock_group(ac-\u003eac_sb, group)\n    ext4_mb_use_best_found\n      mb_mark_used\n      // Allocating blocks in block bitmap corrupted group",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26773",
          "url": "https://www.suse.com/security/cve/CVE-2024-26773"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222618 for CVE-2024-26773",
          "url": "https://bugzilla.suse.com/1222618"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26773"
    },
    {
      "cve": "CVE-2024-26783",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26783"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index\n\nWith numa balancing on, when a numa system is running where a numa node\ndoesn\u0027t have its local memory so it has no managed zones, the following\noops has been observed.  It\u0027s because wakeup_kswapd() is called with a\nwrong zone index, -1.  Fixed it by checking the index before calling\nwakeup_kswapd().\n\n\u003e BUG: unable to handle page fault for address: 00000000000033f3\n\u003e #PF: supervisor read access in kernel mode\n\u003e #PF: error_code(0x0000) - not-present page\n\u003e PGD 0 P4D 0\n\u003e Oops: 0000 [#1] PREEMPT SMP NOPTI\n\u003e CPU: 2 PID: 895 Comm: masim Not tainted 6.6.0-dirty #255\n\u003e Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n\u003e    rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n\u003e RIP: 0010:wakeup_kswapd (./linux/mm/vmscan.c:7812)\n\u003e Code: (omitted)\n\u003e RSP: 0000:ffffc90004257d58 EFLAGS: 00010286\n\u003e RAX: ffffffffffffffff RBX: ffff88883fff0480 RCX: 0000000000000003\n\u003e RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88883fff0480\n\u003e RBP: ffffffffffffffff R08: ff0003ffffffffff R09: ffffffffffffffff\n\u003e R10: ffff888106c95540 R11: 0000000055555554 R12: 0000000000000003\n\u003e R13: 0000000000000000 R14: 0000000000000000 R15: ffff88883fff0940\n\u003e FS:  00007fc4b8124740(0000) GS:ffff888827c00000(0000) knlGS:0000000000000000\n\u003e CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\u003e CR2: 00000000000033f3 CR3: 000000026cc08004 CR4: 0000000000770ee0\n\u003e DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n\u003e DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n\u003e PKRU: 55555554\n\u003e Call Trace:\n\u003e  \u003cTASK\u003e\n\u003e ? __die\n\u003e ? page_fault_oops\n\u003e ? __pte_offset_map_lock\n\u003e ? exc_page_fault\n\u003e ? asm_exc_page_fault\n\u003e ? wakeup_kswapd\n\u003e migrate_misplaced_page\n\u003e __handle_mm_fault\n\u003e handle_mm_fault\n\u003e do_user_addr_fault\n\u003e exc_page_fault\n\u003e asm_exc_page_fault\n\u003e RIP: 0033:0x55b897ba0808\n\u003e Code: (omitted)\n\u003e RSP: 002b:00007ffeefa821a0 EFLAGS: 00010287\n\u003e RAX: 000055b89983acd0 RBX: 00007ffeefa823f8 RCX: 000055b89983acd0\n\u003e RDX: 00007fc2f8122010 RSI: 0000000000020000 RDI: 000055b89983acd0\n\u003e RBP: 00007ffeefa821a0 R08: 0000000000000037 R09: 0000000000000075\n\u003e R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000\n\u003e R13: 00007ffeefa82410 R14: 000055b897ba5dd8 R15: 00007fc4b8340000\n\u003e  \u003c/TASK\u003e",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26783",
          "url": "https://www.suse.com/security/cve/CVE-2024-26783"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222615 for CVE-2024-26783",
          "url": "https://bugzilla.suse.com/1222615"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26783"
    },
    {
      "cve": "CVE-2024-26791",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26791"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: dev-replace: properly validate device names\n\nThere\u0027s a syzbot report that device name buffers passed to device\nreplace are not properly checked for string termination which could lead\nto a read out of bounds in getname_kernel().\n\nAdd a helper that validates both source and target device name buffers.\nFor devid as the source initialize the buffer to empty string in case\nsomething tries to read it later.\n\nThis was originally analyzed and fixed in a different way by Edward Adam\nDavis (see links).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26791",
          "url": "https://www.suse.com/security/cve/CVE-2024-26791"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222793 for CVE-2024-26791",
          "url": "https://bugzilla.suse.com/1222793"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26791"
    },
    {
      "cve": "CVE-2024-26792",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26792"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix double free of anonymous device after snapshot creation failure\n\nWhen creating a snapshot we may do a double free of an anonymous device\nin case there\u0027s an error committing the transaction. The second free may\nresult in freeing an anonymous device number that was allocated by some\nother subsystem in the kernel or another btrfs filesystem.\n\nThe steps that lead to this:\n\n1) At ioctl.c:create_snapshot() we allocate an anonymous device number\n   and assign it to pending_snapshot-\u003eanon_dev;\n\n2) Then we call btrfs_commit_transaction() and end up at\n   transaction.c:create_pending_snapshot();\n\n3) There we call btrfs_get_new_fs_root() and pass it the anonymous device\n   number stored in pending_snapshot-\u003eanon_dev;\n\n4) btrfs_get_new_fs_root() frees that anonymous device number because\n   btrfs_lookup_fs_root() returned a root - someone else did a lookup\n   of the new root already, which could some task doing backref walking;\n\n5) After that some error happens in the transaction commit path, and at\n   ioctl.c:create_snapshot() we jump to the \u0027fail\u0027 label, and after\n   that we free again the same anonymous device number, which in the\n   meanwhile may have been reallocated somewhere else, because\n   pending_snapshot-\u003eanon_dev still has the same value as in step 1.\n\nRecently syzbot ran into this and reported the following trace:\n\n  ------------[ cut here ]------------\n  ida_free called for id=51 which is not allocated.\n  WARNING: CPU: 1 PID: 31038 at lib/idr.c:525 ida_free+0x370/0x420 lib/idr.c:525\n  Modules linked in:\n  CPU: 1 PID: 31038 Comm: syz-executor.2 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0\n  Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\n  RIP: 0010:ida_free+0x370/0x420 lib/idr.c:525\n  Code: 10 42 80 3c 28 (...)\n  RSP: 0018:ffffc90015a67300 EFLAGS: 00010246\n  RAX: be5130472f5dd000 RBX: 0000000000000033 RCX: 0000000000040000\n  RDX: ffffc90009a7a000 RSI: 000000000003ffff RDI: 0000000000040000\n  RBP: ffffc90015a673f0 R08: ffffffff81577992 R09: 1ffff92002b4cdb4\n  R10: dffffc0000000000 R11: fffff52002b4cdb5 R12: 0000000000000246\n  R13: dffffc0000000000 R14: ffffffff8e256b80 R15: 0000000000000246\n  FS:  00007fca3f4b46c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000\n  CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n  CR2: 00007f167a17b978 CR3: 000000001ed26000 CR4: 0000000000350ef0\n  Call Trace:\n   \u003cTASK\u003e\n   btrfs_get_root_ref+0xa48/0xaf0 fs/btrfs/disk-io.c:1346\n   create_pending_snapshot+0xff2/0x2bc0 fs/btrfs/transaction.c:1837\n   create_pending_snapshots+0x195/0x1d0 fs/btrfs/transaction.c:1931\n   btrfs_commit_transaction+0xf1c/0x3740 fs/btrfs/transaction.c:2404\n   create_snapshot+0x507/0x880 fs/btrfs/ioctl.c:848\n   btrfs_mksubvol+0x5d0/0x750 fs/btrfs/ioctl.c:998\n   btrfs_mksnapshot+0xb5/0xf0 fs/btrfs/ioctl.c:1044\n   __btrfs_ioctl_snap_create+0x387/0x4b0 fs/btrfs/ioctl.c:1306\n   btrfs_ioctl_snap_create_v2+0x1ca/0x400 fs/btrfs/ioctl.c:1393\n   btrfs_ioctl+0xa74/0xd40\n   vfs_ioctl fs/ioctl.c:51 [inline]\n   __do_sys_ioctl fs/ioctl.c:871 [inline]\n   __se_sys_ioctl+0xfe/0x170 fs/ioctl.c:857\n   do_syscall_64+0xfb/0x240\n   entry_SYSCALL_64_after_hwframe+0x6f/0x77\n  RIP: 0033:0x7fca3e67dda9\n  Code: 28 00 00 00 (...)\n  RSP: 002b:00007fca3f4b40c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n  RAX: ffffffffffffffda RBX: 00007fca3e7abf80 RCX: 00007fca3e67dda9\n  RDX: 00000000200005c0 RSI: 0000000050009417 RDI: 0000000000000003\n  RBP: 00007fca3e6ca47a R08: 0000000000000000 R09: 0000000000000000\n  R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\n  R13: 000000000000000b R14: 00007fca3e7abf80 R15: 00007fff6bf95658\n   \u003c/TASK\u003e\n\nWhere we get an explicit message where we attempt to free an anonymous\ndevice number that is not currently allocated. It happens in a different\ncode path from the example below, at btrfs_get_root_ref(), so this change\nmay not fix the case triggered by sy\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26792",
          "url": "https://www.suse.com/security/cve/CVE-2024-26792"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222430 for CVE-2024-26792",
          "url": "https://bugzilla.suse.com/1222430"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26792"
    },
    {
      "cve": "CVE-2024-26816",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26816"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86, relocs: Ignore relocations in .notes section\n\nWhen building with CONFIG_XEN_PV=y, .text symbols are emitted into\nthe .notes section so that Xen can find the \"startup_xen\" entry point.\nThis information is used prior to booting the kernel, so relocations\nare not useful. In fact, performing relocations against the .notes\nsection means that the KASLR base is exposed since /sys/kernel/notes\nis world-readable.\n\nTo avoid leaking the KASLR base without breaking unprivileged tools that\nare expecting to read /sys/kernel/notes, skip performing relocations in\nthe .notes section. The values readable in .notes are then identical to\nthose found in System.map.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26816",
          "url": "https://www.suse.com/security/cve/CVE-2024-26816"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222624 for CVE-2024-26816",
          "url": "https://bugzilla.suse.com/1222624"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26816"
    },
    {
      "cve": "CVE-2024-26817",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26817"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\namdkfd: use calloc instead of kzalloc to avoid integer overflow\n\nThis uses calloc instead of doing the multiplication which might\noverflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26817",
          "url": "https://www.suse.com/security/cve/CVE-2024-26817"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222812 for CVE-2024-26817",
          "url": "https://bugzilla.suse.com/1222812"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26817"
    },
    {
      "cve": "CVE-2024-26820",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26820"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed\n\nIf hv_netvsc driver is unloaded and reloaded, the NET_DEVICE_REGISTER\nhandler cannot perform VF register successfully as the register call\nis received before netvsc_probe is finished. This is because we\nregister register_netdevice_notifier() very early( even before\nvmbus_driver_register()).\nTo fix this, we try to register each such matching VF( if it is visible\nas a netdevice) at the end of netvsc_probe.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26820",
          "url": "https://www.suse.com/security/cve/CVE-2024-26820"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223078 for CVE-2024-26820",
          "url": "https://bugzilla.suse.com/1223078"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26820"
    },
    {
      "cve": "CVE-2024-26825",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26825"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: free rx_data_reassembly skb on NCI device cleanup\n\nrx_data_reassembly skb is stored during NCI data exchange for processing\nfragmented packets. It is dropped only when the last fragment is processed\nor when an NTF packet with NCI_OP_RF_DEACTIVATE_NTF opcode is received.\nHowever, the NCI device may be deallocated before that which leads to skb\nleak.\n\nAs by design the rx_data_reassembly skb is bound to the NCI device and\nnothing prevents the device to be freed before the skb is processed in\nsome way and cleaned, free it on the NCI device cleanup.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26825",
          "url": "https://www.suse.com/security/cve/CVE-2024-26825"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223065 for CVE-2024-26825",
          "url": "https://bugzilla.suse.com/1223065"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26825"
    },
    {
      "cve": "CVE-2024-26830",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26830"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Do not allow untrusted VF to remove administratively set MAC\n\nCurrently when PF administratively sets VF\u0027s MAC address and the VF\nis put down (VF tries to delete all MACs) then the MAC is removed\nfrom MAC filters and primary VF MAC is zeroed.\n\nDo not allow untrusted VF to remove primary MAC when it was set\nadministratively by PF.\n\nReproducer:\n1) Create VF\n2) Set VF interface up\n3) Administratively set the VF\u0027s MAC\n4) Put VF interface down\n\n[root@host ~]# echo 1 \u003e /sys/class/net/enp2s0f0/device/sriov_numvfs\n[root@host ~]# ip link set enp2s0f0v0 up\n[root@host ~]# ip link set enp2s0f0 vf 0 mac fe:6c:b5:da:c7:7d\n[root@host ~]# ip link show enp2s0f0\n23: enp2s0f0: \u003cBROADCAST,MULTICAST,UP,LOWER_UP\u003e mtu 1500 qdisc mq state UP mode DEFAULT group default qlen 1000\n    link/ether 3c:ec:ef:b7:dd:04 brd ff:ff:ff:ff:ff:ff\n    vf 0     link/ether fe:6c:b5:da:c7:7d brd ff:ff:ff:ff:ff:ff, spoof checking on, link-state auto, trust off\n[root@host ~]# ip link set enp2s0f0v0 down\n[root@host ~]# ip link show enp2s0f0\n23: enp2s0f0: \u003cBROADCAST,MULTICAST,UP,LOWER_UP\u003e mtu 1500 qdisc mq state UP mode DEFAULT group default qlen 1000\n    link/ether 3c:ec:ef:b7:dd:04 brd ff:ff:ff:ff:ff:ff\n    vf 0     link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff, spoof checking on, link-state auto, trust off",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26830",
          "url": "https://www.suse.com/security/cve/CVE-2024-26830"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223012 for CVE-2024-26830",
          "url": "https://bugzilla.suse.com/1223012"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26830"
    },
    {
      "cve": "CVE-2024-26833",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26833"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix memory leak in dm_sw_fini()\n\nAfter destroying dmub_srv, the memory associated with it is\nnot freed, causing a memory leak:\n\nunreferenced object 0xffff896302b45800 (size 1024):\n  comm \"(udev-worker)\", pid 222, jiffies 4294894636\n  hex dump (first 32 bytes):\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace (crc 6265fd77):\n    [\u003cffffffff993495ed\u003e] kmalloc_trace+0x29d/0x340\n    [\u003cffffffffc0ea4a94\u003e] dm_dmub_sw_init+0xb4/0x450 [amdgpu]\n    [\u003cffffffffc0ea4e55\u003e] dm_sw_init+0x15/0x2b0 [amdgpu]\n    [\u003cffffffffc0ba8557\u003e] amdgpu_device_init+0x1417/0x24e0 [amdgpu]\n    [\u003cffffffffc0bab285\u003e] amdgpu_driver_load_kms+0x15/0x190 [amdgpu]\n    [\u003cffffffffc0ba09c7\u003e] amdgpu_pci_probe+0x187/0x4e0 [amdgpu]\n    [\u003cffffffff9968fd1e\u003e] local_pci_probe+0x3e/0x90\n    [\u003cffffffff996918a3\u003e] pci_device_probe+0xc3/0x230\n    [\u003cffffffff99805872\u003e] really_probe+0xe2/0x480\n    [\u003cffffffff99805c98\u003e] __driver_probe_device+0x78/0x160\n    [\u003cffffffff99805daf\u003e] driver_probe_device+0x1f/0x90\n    [\u003cffffffff9980601e\u003e] __driver_attach+0xce/0x1c0\n    [\u003cffffffff99803170\u003e] bus_for_each_dev+0x70/0xc0\n    [\u003cffffffff99804822\u003e] bus_add_driver+0x112/0x210\n    [\u003cffffffff99807245\u003e] driver_register+0x55/0x100\n    [\u003cffffffff990012d1\u003e] do_one_initcall+0x41/0x300\n\nFix this by freeing dmub_srv after destroying it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26833",
          "url": "https://www.suse.com/security/cve/CVE-2024-26833"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223036 for CVE-2024-26833",
          "url": "https://bugzilla.suse.com/1223036"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26833"
    },
    {
      "cve": "CVE-2024-26836",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26836"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: think-lmi: Fix password opcode ordering for workstations\n\nThe Lenovo workstations require the password opcode to be run before\nthe attribute value is changed (if Admin password is enabled).\n\nTested on some Thinkpads to confirm they are OK with this order too.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26836",
          "url": "https://www.suse.com/security/cve/CVE-2024-26836"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222968 for CVE-2024-26836",
          "url": "https://bugzilla.suse.com/1222968"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26836"
    },
    {
      "cve": "CVE-2024-26840",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26840"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: fix memory leak in cachefiles_add_cache()\n\nThe following memory leak was reported after unbinding /dev/cachefiles:\n\n==================================================================\nunreferenced object 0xffff9b674176e3c0 (size 192):\n  comm \"cachefilesd2\", pid 680, jiffies 4294881224\n  hex dump (first 32 bytes):\n    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace (crc ea38a44b):\n    [\u003cffffffff8eb8a1a5\u003e] kmem_cache_alloc+0x2d5/0x370\n    [\u003cffffffff8e917f86\u003e] prepare_creds+0x26/0x2e0\n    [\u003cffffffffc002eeef\u003e] cachefiles_determine_cache_security+0x1f/0x120\n    [\u003cffffffffc00243ec\u003e] cachefiles_add_cache+0x13c/0x3a0\n    [\u003cffffffffc0025216\u003e] cachefiles_daemon_write+0x146/0x1c0\n    [\u003cffffffff8ebc4a3b\u003e] vfs_write+0xcb/0x520\n    [\u003cffffffff8ebc5069\u003e] ksys_write+0x69/0xf0\n    [\u003cffffffff8f6d4662\u003e] do_syscall_64+0x72/0x140\n    [\u003cffffffff8f8000aa\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n==================================================================\n\nPut the reference count of cache_cred in cachefiles_daemon_unbind() to\nfix the problem. And also put cache_cred in cachefiles_add_cache() error\nbranch to avoid memory leaks.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26840",
          "url": "https://www.suse.com/security/cve/CVE-2024-26840"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222976 for CVE-2024-26840",
          "url": "https://bugzilla.suse.com/1222976"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "low"
        }
      ],
      "title": "CVE-2024-26840"
    },
    {
      "cve": "CVE-2024-26843",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26843"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: runtime: Fix potential overflow of soft-reserved region size\n\nmd_size will have been narrowed if we have \u003e= 4GB worth of pages in a\nsoft-reserved region.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26843",
          "url": "https://www.suse.com/security/cve/CVE-2024-26843"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223014 for CVE-2024-26843",
          "url": "https://bugzilla.suse.com/1223014"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26843"
    },
    {
      "cve": "CVE-2024-26852",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26852"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ipv6: avoid possible UAF in ip6_route_mpath_notify()\n\nsyzbot found another use-after-free in ip6_route_mpath_notify() [1]\n\nCommit f7225172f25a (\"net/ipv6: prevent use after free in\nip6_route_mpath_notify\") was not able to fix the root cause.\n\nWe need to defer the fib6_info_release() calls after\nip6_route_mpath_notify(), in the cleanup phase.\n\n[1]\nBUG: KASAN: slab-use-after-free in rt6_fill_node+0x1460/0x1ac0\nRead of size 4 at addr ffff88809a07fc64 by task syz-executor.2/23037\n\nCPU: 0 PID: 23037 Comm: syz-executor.2 Not tainted 6.8.0-rc4-syzkaller-01035-gea7f3cfaa588 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall Trace:\n \u003cTASK\u003e\n  __dump_stack lib/dump_stack.c:88 [inline]\n  dump_stack_lvl+0x1e7/0x2e0 lib/dump_stack.c:106\n  print_address_description mm/kasan/report.c:377 [inline]\n  print_report+0x167/0x540 mm/kasan/report.c:488\n  kasan_report+0x142/0x180 mm/kasan/report.c:601\n rt6_fill_node+0x1460/0x1ac0\n  inet6_rt_notify+0x13b/0x290 net/ipv6/route.c:6184\n  ip6_route_mpath_notify net/ipv6/route.c:5198 [inline]\n  ip6_route_multipath_add net/ipv6/route.c:5404 [inline]\n  inet6_rtm_newroute+0x1d0f/0x2300 net/ipv6/route.c:5517\n  rtnetlink_rcv_msg+0x885/0x1040 net/core/rtnetlink.c:6597\n  netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2543\n  netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]\n  netlink_unicast+0x7ea/0x980 net/netlink/af_netlink.c:1367\n  netlink_sendmsg+0xa3b/0xd70 net/netlink/af_netlink.c:1908\n  sock_sendmsg_nosec net/socket.c:730 [inline]\n  __sock_sendmsg+0x221/0x270 net/socket.c:745\n  ____sys_sendmsg+0x525/0x7d0 net/socket.c:2584\n  ___sys_sendmsg net/socket.c:2638 [inline]\n  __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2667\n do_syscall_64+0xf9/0x240\n entry_SYSCALL_64_after_hwframe+0x6f/0x77\nRIP: 0033:0x7f73dd87dda9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f73de6550c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f73dd9ac050 RCX: 00007f73dd87dda9\nRDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000005\nRBP: 00007f73dd8ca47a R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000006e R14: 00007f73dd9ac050 R15: 00007ffdbdeb7858\n \u003c/TASK\u003e\n\nAllocated by task 23037:\n  kasan_save_stack mm/kasan/common.c:47 [inline]\n  kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n  poison_kmalloc_redzone mm/kasan/common.c:372 [inline]\n  __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:389\n  kasan_kmalloc include/linux/kasan.h:211 [inline]\n  __do_kmalloc_node mm/slub.c:3981 [inline]\n  __kmalloc+0x22e/0x490 mm/slub.c:3994\n  kmalloc include/linux/slab.h:594 [inline]\n  kzalloc include/linux/slab.h:711 [inline]\n  fib6_info_alloc+0x2e/0xf0 net/ipv6/ip6_fib.c:155\n  ip6_route_info_create+0x445/0x12b0 net/ipv6/route.c:3758\n  ip6_route_multipath_add net/ipv6/route.c:5298 [inline]\n  inet6_rtm_newroute+0x744/0x2300 net/ipv6/route.c:5517\n  rtnetlink_rcv_msg+0x885/0x1040 net/core/rtnetlink.c:6597\n  netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2543\n  netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]\n  netlink_unicast+0x7ea/0x980 net/netlink/af_netlink.c:1367\n  netlink_sendmsg+0xa3b/0xd70 net/netlink/af_netlink.c:1908\n  sock_sendmsg_nosec net/socket.c:730 [inline]\n  __sock_sendmsg+0x221/0x270 net/socket.c:745\n  ____sys_sendmsg+0x525/0x7d0 net/socket.c:2584\n  ___sys_sendmsg net/socket.c:2638 [inline]\n  __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2667\n do_syscall_64+0xf9/0x240\n entry_SYSCALL_64_after_hwframe+0x6f/0x77\n\nFreed by task 16:\n  kasan_save_stack mm/kasan/common.c:47 [inline]\n  kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n  kasan_save_free_info+0x4e/0x60 mm/kasan/generic.c:640\n  poison_slab_object+0xa6/0xe0 m\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26852",
          "url": "https://www.suse.com/security/cve/CVE-2024-26852"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223057 for CVE-2024-26852",
          "url": "https://bugzilla.suse.com/1223057"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223059 for CVE-2024-26852",
          "url": "https://bugzilla.suse.com/1223059"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-26852"
    },
    {
      "cve": "CVE-2024-26853",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26853"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nigc: avoid returning frame twice in XDP_REDIRECT\n\nWhen a frame can not be transmitted in XDP_REDIRECT\n(e.g. due to a full queue), it is necessary to free\nit by calling xdp_return_frame_rx_napi.\n\nHowever, this is the responsibility of the caller of\nthe ndo_xdp_xmit (see for example bq_xmit_all in\nkernel/bpf/devmap.c) and thus calling it inside\nigc_xdp_xmit (which is the ndo_xdp_xmit of the igc\ndriver) as well will lead to memory corruption.\n\nIn fact, bq_xmit_all expects that it can return all\nframes after the last successfully transmitted one.\nTherefore, break for the first not transmitted frame,\nbut do not call xdp_return_frame_rx_napi in igc_xdp_xmit.\nThis is equally implemented in other Intel drivers\nsuch as the igb.\n\nThere are two alternatives to this that were rejected:\n1. Return num_frames as all the frames would have been\n   transmitted and release them inside igc_xdp_xmit.\n   While it might work technically, it is not what\n   the return value is meant to represent (i.e. the\n   number of SUCCESSFULLY transmitted packets).\n2. Rework kernel/bpf/devmap.c and all drivers to\n   support non-consecutively dropped packets.\n   Besides being complex, it likely has a negative\n   performance impact without a significant gain\n   since it is anyway unlikely that the next frame\n   can be transmitted if the previous one was dropped.\n\nThe memory corruption can be reproduced with\nthe following script which leads to a kernel panic\nafter a few seconds.  It basically generates more\ntraffic than a i225 NIC can transmit and pushes it\nvia XDP_REDIRECT from a virtual interface to the\nphysical interface where frames get dropped.\n\n   #!/bin/bash\n   INTERFACE=enp4s0\n   INTERFACE_IDX=`cat /sys/class/net/$INTERFACE/ifindex`\n\n   sudo ip link add dev veth1 type veth peer name veth2\n   sudo ip link set up $INTERFACE\n   sudo ip link set up veth1\n   sudo ip link set up veth2\n\n   cat \u003c\u003c EOF \u003e redirect.bpf.c\n\n   SEC(\"prog\")\n   int redirect(struct xdp_md *ctx)\n   {\n       return bpf_redirect($INTERFACE_IDX, 0);\n   }\n\n   char _license[] SEC(\"license\") = \"GPL\";\n   EOF\n   clang -O2 -g -Wall -target bpf -c redirect.bpf.c -o redirect.bpf.o\n   sudo ip link set veth2 xdp obj redirect.bpf.o\n\n   cat \u003c\u003c EOF \u003e pass.bpf.c\n\n   SEC(\"prog\")\n   int pass(struct xdp_md *ctx)\n   {\n       return XDP_PASS;\n   }\n\n   char _license[] SEC(\"license\") = \"GPL\";\n   EOF\n   clang -O2 -g -Wall -target bpf -c pass.bpf.c -o pass.bpf.o\n   sudo ip link set $INTERFACE xdp obj pass.bpf.o\n\n   cat \u003c\u003c EOF \u003e trafgen.cfg\n\n   {\n     /* Ethernet Header */\n     0xe8, 0x6a, 0x64, 0x41, 0xbf, 0x46,\n     0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,\n     const16(ETH_P_IP),\n\n     /* IPv4 Header */\n     0b01000101, 0,   # IPv4 version, IHL, TOS\n     const16(1028),   # IPv4 total length (UDP length + 20 bytes (IP header))\n     const16(2),      # IPv4 ident\n     0b01000000, 0,   # IPv4 flags, fragmentation off\n     64,              # IPv4 TTL\n     17,              # Protocol UDP\n     csumip(14, 33),  # IPv4 checksum\n\n     /* UDP Header */\n     10,  0, 1, 1,    # IP Src - adapt as needed\n     10,  0, 1, 2,    # IP Dest - adapt as needed\n     const16(6666),   # UDP Src Port\n     const16(6666),   # UDP Dest Port\n     const16(1008),   # UDP length (UDP header 8 bytes + payload length)\n     csumudp(14, 34), # UDP checksum\n\n     /* Payload */\n     fill(\u0027W\u0027, 1000),\n   }\n   EOF\n\n   sudo trafgen -i trafgen.cfg -b3000MB -o veth1 --cpp",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26853",
          "url": "https://www.suse.com/security/cve/CVE-2024-26853"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223061 for CVE-2024-26853",
          "url": "https://bugzilla.suse.com/1223061"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26853"
    },
    {
      "cve": "CVE-2024-26855",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26855"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()\n\nThe function ice_bridge_setlink() may encounter a NULL pointer dereference\nif nlmsg_find_attr() returns NULL and br_spec is dereferenced subsequently\nin nla_for_each_nested(). To address this issue, add a check to ensure that\nbr_spec is not NULL before proceeding with the nested attribute iteration.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26855",
          "url": "https://www.suse.com/security/cve/CVE-2024-26855"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223051 for CVE-2024-26855",
          "url": "https://bugzilla.suse.com/1223051"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26855"
    },
    {
      "cve": "CVE-2024-26856",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26856"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sparx5: Fix use after free inside sparx5_del_mact_entry\n\nBased on the static analyzis of the code it looks like when an entry\nfrom the MAC table was removed, the entry was still used after being\nfreed. More precise the vid of the mac_entry was used after calling\ndevm_kfree on the mac_entry.\nThe fix consists in first using the vid of the mac_entry to delete the\nentry from the HW and after that to free it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26856",
          "url": "https://www.suse.com/security/cve/CVE-2024-26856"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223052 for CVE-2024-26856",
          "url": "https://bugzilla.suse.com/1223052"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26856"
    },
    {
      "cve": "CVE-2024-26857",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26857"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: make sure to pull inner header in geneve_rx()\n\nsyzbot triggered a bug in geneve_rx() [1]\n\nIssue is similar to the one I fixed in commit 8d975c15c0cd\n(\"ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()\")\n\nWe have to save skb-\u003enetwork_header in a temporary variable\nin order to be able to recompute the network_header pointer\nafter a pskb_inet_may_pull() call.\n\npskb_inet_may_pull() makes sure the needed headers are in skb-\u003ehead.\n\n[1]\nBUG: KMSAN: uninit-value in IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n BUG: KMSAN: uninit-value in geneve_rx drivers/net/geneve.c:279 [inline]\n BUG: KMSAN: uninit-value in geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391\n  IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n  geneve_rx drivers/net/geneve.c:279 [inline]\n  geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391\n  udp_queue_rcv_one_skb+0x1d39/0x1f20 net/ipv4/udp.c:2108\n  udp_queue_rcv_skb+0x6ae/0x6e0 net/ipv4/udp.c:2186\n  udp_unicast_rcv_skb+0x184/0x4b0 net/ipv4/udp.c:2346\n  __udp4_lib_rcv+0x1c6b/0x3010 net/ipv4/udp.c:2422\n  udp_rcv+0x7d/0xa0 net/ipv4/udp.c:2604\n  ip_protocol_deliver_rcu+0x264/0x1300 net/ipv4/ip_input.c:205\n  ip_local_deliver_finish+0x2b8/0x440 net/ipv4/ip_input.c:233\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254\n  dst_input include/net/dst.h:461 [inline]\n  ip_rcv_finish net/ipv4/ip_input.c:449 [inline]\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip_rcv+0x46f/0x760 net/ipv4/ip_input.c:569\n  __netif_receive_skb_one_core net/core/dev.c:5534 [inline]\n  __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5648\n  process_backlog+0x480/0x8b0 net/core/dev.c:5976\n  __napi_poll+0xe3/0x980 net/core/dev.c:6576\n  napi_poll net/core/dev.c:6645 [inline]\n  net_rx_action+0x8b8/0x1870 net/core/dev.c:6778\n  __do_softirq+0x1b7/0x7c5 kernel/softirq.c:553\n  do_softirq+0x9a/0xf0 kernel/softirq.c:454\n  __local_bh_enable_ip+0x9b/0xa0 kernel/softirq.c:381\n  local_bh_enable include/linux/bottom_half.h:33 [inline]\n  rcu_read_unlock_bh include/linux/rcupdate.h:820 [inline]\n  __dev_queue_xmit+0x2768/0x51c0 net/core/dev.c:4378\n  dev_queue_xmit include/linux/netdevice.h:3171 [inline]\n  packet_xmit+0x9c/0x6b0 net/packet/af_packet.c:276\n  packet_snd net/packet/af_packet.c:3081 [inline]\n  packet_sendmsg+0x8aef/0x9f10 net/packet/af_packet.c:3113\n  sock_sendmsg_nosec net/socket.c:730 [inline]\n  __sock_sendmsg net/socket.c:745 [inline]\n  __sys_sendto+0x735/0xa10 net/socket.c:2191\n  __do_sys_sendto net/socket.c:2203 [inline]\n  __se_sys_sendto net/socket.c:2199 [inline]\n  __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n  slab_post_alloc_hook mm/slub.c:3819 [inline]\n  slab_alloc_node mm/slub.c:3860 [inline]\n  kmem_cache_alloc_node+0x5cb/0xbc0 mm/slub.c:3903\n  kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n  __alloc_skb+0x352/0x790 net/core/skbuff.c:651\n  alloc_skb include/linux/skbuff.h:1296 [inline]\n  alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6394\n  sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2783\n  packet_alloc_skb net/packet/af_packet.c:2930 [inline]\n  packet_snd net/packet/af_packet.c:3024 [inline]\n  packet_sendmsg+0x70c2/0x9f10 net/packet/af_packet.c:3113\n  sock_sendmsg_nosec net/socket.c:730 [inline]\n  __sock_sendmsg net/socket.c:745 [inline]\n  __sys_sendto+0x735/0xa10 net/socket.c:2191\n  __do_sys_sendto net/socket.c:2203 [inline]\n  __se_sys_sendto net/socket.c:2199 [inline]\n  __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26857",
          "url": "https://www.suse.com/security/cve/CVE-2024-26857"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223058 for CVE-2024-26857",
          "url": "https://bugzilla.suse.com/1223058"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26857"
    },
    {
      "cve": "CVE-2024-26861",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26861"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: receive: annotate data-race around receiving_counter.counter\n\nSyzkaller with KCSAN identified a data-race issue when accessing\nkeypair-\u003ereceiving_counter.counter. Use READ_ONCE() and WRITE_ONCE()\nannotations to mark the data race as intentional.\n\n    BUG: KCSAN: data-race in wg_packet_decrypt_worker / wg_packet_rx_poll\n\n    write to 0xffff888107765888 of 8 bytes by interrupt on cpu 0:\n     counter_validate drivers/net/wireguard/receive.c:321 [inline]\n     wg_packet_rx_poll+0x3ac/0xf00 drivers/net/wireguard/receive.c:461\n     __napi_poll+0x60/0x3b0 net/core/dev.c:6536\n     napi_poll net/core/dev.c:6605 [inline]\n     net_rx_action+0x32b/0x750 net/core/dev.c:6738\n     __do_softirq+0xc4/0x279 kernel/softirq.c:553\n     do_softirq+0x5e/0x90 kernel/softirq.c:454\n     __local_bh_enable_ip+0x64/0x70 kernel/softirq.c:381\n     __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline]\n     _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210\n     spin_unlock_bh include/linux/spinlock.h:396 [inline]\n     ptr_ring_consume_bh include/linux/ptr_ring.h:367 [inline]\n     wg_packet_decrypt_worker+0x6c5/0x700 drivers/net/wireguard/receive.c:499\n     process_one_work kernel/workqueue.c:2633 [inline]\n     ...\n\n    read to 0xffff888107765888 of 8 bytes by task 3196 on cpu 1:\n     decrypt_packet drivers/net/wireguard/receive.c:252 [inline]\n     wg_packet_decrypt_worker+0x220/0x700 drivers/net/wireguard/receive.c:501\n     process_one_work kernel/workqueue.c:2633 [inline]\n     process_scheduled_works+0x5b8/0xa30 kernel/workqueue.c:2706\n     worker_thread+0x525/0x730 kernel/workqueue.c:2787\n     ...",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26861",
          "url": "https://www.suse.com/security/cve/CVE-2024-26861"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223076 for CVE-2024-26861",
          "url": "https://bugzilla.suse.com/1223076"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26861"
    },
    {
      "cve": "CVE-2024-26862",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26862"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\npacket: annotate data-races around ignore_outgoing\n\nignore_outgoing is read locklessly from dev_queue_xmit_nit()\nand packet_getsockopt()\n\nAdd appropriate READ_ONCE()/WRITE_ONCE() annotations.\n\nsyzbot reported:\n\nBUG: KCSAN: data-race in dev_queue_xmit_nit / packet_setsockopt\n\nwrite to 0xffff888107804542 of 1 bytes by task 22618 on cpu 0:\n packet_setsockopt+0xd83/0xfd0 net/packet/af_packet.c:4003\n do_sock_setsockopt net/socket.c:2311 [inline]\n __sys_setsockopt+0x1d8/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0x66/0x80 net/socket.c:2340\n do_syscall_64+0xd3/0x1d0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nread to 0xffff888107804542 of 1 bytes by task 27 on cpu 1:\n dev_queue_xmit_nit+0x82/0x620 net/core/dev.c:2248\n xmit_one net/core/dev.c:3527 [inline]\n dev_hard_start_xmit+0xcc/0x3f0 net/core/dev.c:3547\n __dev_queue_xmit+0xf24/0x1dd0 net/core/dev.c:4335\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n batadv_send_skb_packet+0x264/0x300 net/batman-adv/send.c:108\n batadv_send_broadcast_skb+0x24/0x30 net/batman-adv/send.c:127\n batadv_iv_ogm_send_to_if net/batman-adv/bat_iv_ogm.c:392 [inline]\n batadv_iv_ogm_emit net/batman-adv/bat_iv_ogm.c:420 [inline]\n batadv_iv_send_outstanding_bat_ogm_packet+0x3f0/0x4b0 net/batman-adv/bat_iv_ogm.c:1700\n process_one_work kernel/workqueue.c:3254 [inline]\n process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335\n worker_thread+0x526/0x730 kernel/workqueue.c:3416\n kthread+0x1d1/0x210 kernel/kthread.c:388\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243\n\nvalue changed: 0x00 -\u003e 0x01\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 1 PID: 27 Comm: kworker/u8:1 Tainted: G        W          6.8.0-syzkaller-08073-g480e035fc4c7 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024\nWorkqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26862",
          "url": "https://www.suse.com/security/cve/CVE-2024-26862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223111 for CVE-2024-26862",
          "url": "https://bugzilla.suse.com/1223111"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26862"
    },
    {
      "cve": "CVE-2024-26866",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26866"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: lpspi: Avoid potential use-after-free in probe()\n\nfsl_lpspi_probe() is allocating/disposing memory manually with\nspi_alloc_host()/spi_alloc_target(), but uses\ndevm_spi_register_controller(). In case of error after the latter call the\nmemory will be explicitly freed in the probe function by\nspi_controller_put() call, but used afterwards by \"devm\" management outside\nprobe() (spi_unregister_controller() \u003c- devm_spi_unregister() below).\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000070\n...\nCall trace:\n kernfs_find_ns\n kernfs_find_and_get_ns\n sysfs_remove_group\n sysfs_remove_groups\n device_remove_attrs\n device_del\n spi_unregister_controller\n devm_spi_unregister\n release_nodes\n devres_release_all\n really_probe\n driver_probe_device\n __device_attach_driver\n bus_for_each_drv\n __device_attach\n device_initial_probe\n bus_probe_device\n deferred_probe_work_func\n process_one_work\n worker_thread\n kthread\n ret_from_fork",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26866",
          "url": "https://www.suse.com/security/cve/CVE-2024-26866"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223024 for CVE-2024-26866",
          "url": "https://bugzilla.suse.com/1223024"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26866"
    },
    {
      "cve": "CVE-2024-26872",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26872"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/srpt: Do not register event handler until srpt device is fully setup\n\nUpon rare occasions, KASAN reports a use-after-free Write\nin srpt_refresh_port().\n\nThis seems to be because an event handler is registered before the\nsrpt device is fully setup and a race condition upon error may leave a\npartially setup event handler in place.\n\nInstead, only register the event handler after srpt device initialization\nis complete.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26872",
          "url": "https://www.suse.com/security/cve/CVE-2024-26872"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223115 for CVE-2024-26872",
          "url": "https://bugzilla.suse.com/1223115"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26872"
    },
    {
      "cve": "CVE-2024-26875",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26875"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: pvrusb2: fix uaf in pvr2_context_set_notify\n\n[Syzbot reported]\nBUG: KASAN: slab-use-after-free in pvr2_context_set_notify+0x2c4/0x310 drivers/media/usb/pvrusb2/pvrusb2-context.c:35\nRead of size 4 at addr ffff888113aeb0d8 by task kworker/1:1/26\n\nCPU: 1 PID: 26 Comm: kworker/1:1 Not tainted 6.8.0-rc1-syzkaller-00046-gf1a27f081c1f #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd9/0x1b0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc4/0x620 mm/kasan/report.c:488\n kasan_report+0xda/0x110 mm/kasan/report.c:601\n pvr2_context_set_notify+0x2c4/0x310 drivers/media/usb/pvrusb2/pvrusb2-context.c:35\n pvr2_context_notify drivers/media/usb/pvrusb2/pvrusb2-context.c:95 [inline]\n pvr2_context_disconnect+0x94/0xb0 drivers/media/usb/pvrusb2/pvrusb2-context.c:272\n\nFreed by task 906:\nkasan_save_stack+0x33/0x50 mm/kasan/common.c:47\nkasan_save_track+0x14/0x30 mm/kasan/common.c:68\nkasan_save_free_info+0x3f/0x60 mm/kasan/generic.c:640\npoison_slab_object mm/kasan/common.c:241 [inline]\n__kasan_slab_free+0x106/0x1b0 mm/kasan/common.c:257\nkasan_slab_free include/linux/kasan.h:184 [inline]\nslab_free_hook mm/slub.c:2121 [inline]\nslab_free mm/slub.c:4299 [inline]\nkfree+0x105/0x340 mm/slub.c:4409\npvr2_context_check drivers/media/usb/pvrusb2/pvrusb2-context.c:137 [inline]\npvr2_context_thread_func+0x69d/0x960 drivers/media/usb/pvrusb2/pvrusb2-context.c:158\n\n[Analyze]\nTask A set disconnect_flag = !0, which resulted in Task B\u0027s condition being met\nand releasing mp, leading to this issue.\n\n[Fix]\nPlace the disconnect_flag assignment operation after all code in pvr2_context_disconnect()\nto avoid this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26875",
          "url": "https://www.suse.com/security/cve/CVE-2024-26875"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223118 for CVE-2024-26875",
          "url": "https://bugzilla.suse.com/1223118"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26875"
    },
    {
      "cve": "CVE-2024-26876",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26876"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: adv7511: fix crash on irq during probe\n\nMoved IRQ registration down to end of adv7511_probe().\n\nIf an IRQ already is pending during adv7511_probe\n(before adv7511_cec_init) then cec_received_msg_ts\ncould crash using uninitialized data:\n\n    Unable to handle kernel read from unreadable memory at virtual address 00000000000003d5\n    Internal error: Oops: 96000004 [#1] PREEMPT_RT SMP\n    Call trace:\n     cec_received_msg_ts+0x48/0x990 [cec]\n     adv7511_cec_irq_process+0x1cc/0x308 [adv7511]\n     adv7511_irq_process+0xd8/0x120 [adv7511]\n     adv7511_irq_handler+0x1c/0x30 [adv7511]\n     irq_thread_fn+0x30/0xa0\n     irq_thread+0x14c/0x238\n     kthread+0x190/0x1a8",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26876",
          "url": "https://www.suse.com/security/cve/CVE-2024-26876"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223119 for CVE-2024-26876",
          "url": "https://bugzilla.suse.com/1223119"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26876"
    },
    {
      "cve": "CVE-2024-26877",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26877"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: xilinx - call finalize with bh disabled\n\nWhen calling crypto_finalize_request, BH should be disabled to avoid\ntriggering the following calltrace:\n\n    ------------[ cut here ]------------\n    WARNING: CPU: 2 PID: 74 at crypto/crypto_engine.c:58 crypto_finalize_request+0xa0/0x118\n    Modules linked in: cryptodev(O)\n    CPU: 2 PID: 74 Comm: firmware:zynqmp Tainted: G           O       6.8.0-rc1-yocto-standard #323\n    Hardware name: ZynqMP ZCU102 Rev1.0 (DT)\n    pstate: 40000005 (nZcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n    pc : crypto_finalize_request+0xa0/0x118\n    lr : crypto_finalize_request+0x104/0x118\n    sp : ffffffc085353ce0\n    x29: ffffffc085353ce0 x28: 0000000000000000 x27: ffffff8808ea8688\n    x26: ffffffc081715038 x25: 0000000000000000 x24: ffffff880100db00\n    x23: ffffff880100da80 x22: 0000000000000000 x21: 0000000000000000\n    x20: ffffff8805b14000 x19: ffffff880100da80 x18: 0000000000010450\n    x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n    x14: 0000000000000003 x13: 0000000000000000 x12: ffffff880100dad0\n    x11: 0000000000000000 x10: ffffffc0832dcd08 x9 : ffffffc0812416d8\n    x8 : 00000000000001f4 x7 : ffffffc0830d2830 x6 : 0000000000000001\n    x5 : ffffffc082091000 x4 : ffffffc082091658 x3 : 0000000000000000\n    x2 : ffffffc7f9653000 x1 : 0000000000000000 x0 : ffffff8802d20000\n    Call trace:\n     crypto_finalize_request+0xa0/0x118\n     crypto_finalize_aead_request+0x18/0x30\n     zynqmp_handle_aes_req+0xcc/0x388\n     crypto_pump_work+0x168/0x2d8\n     kthread_worker_fn+0xfc/0x3a0\n     kthread+0x118/0x138\n     ret_from_fork+0x10/0x20\n    irq event stamp: 40\n    hardirqs last  enabled at (39): [\u003cffffffc0812416f8\u003e] _raw_spin_unlock_irqrestore+0x70/0xb0\n    hardirqs last disabled at (40): [\u003cffffffc08122d208\u003e] el1_dbg+0x28/0x90\n    softirqs last  enabled at (36): [\u003cffffffc080017dec\u003e] kernel_neon_begin+0x8c/0xf0\n    softirqs last disabled at (34): [\u003cffffffc080017dc0\u003e] kernel_neon_begin+0x60/0xf0\n    ---[ end trace 0000000000000000 ]---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26877",
          "url": "https://www.suse.com/security/cve/CVE-2024-26877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223140 for CVE-2024-26877",
          "url": "https://bugzilla.suse.com/1223140"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26877"
    },
    {
      "cve": "CVE-2024-26878",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26878"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: Fix potential NULL pointer dereference\n\nBelow race may cause NULL pointer dereference\n\nP1\t\t\t\t\tP2\ndquot_free_inode\t\t\tquota_off\n\t\t\t\t\t  drop_dquot_ref\n\t\t\t\t\t   remove_dquot_ref\n\t\t\t\t\t   dquots = i_dquot(inode)\n  dquots = i_dquot(inode)\n  srcu_read_lock\n  dquots[cnt]) != NULL (1)\n\t\t\t\t\t     dquots[type] = NULL (2)\n  spin_lock(\u0026dquots[cnt]-\u003edq_dqb_lock) (3)\n   ....\n\nIf dquot_free_inode(or other routines) checks inode\u0027s quota pointers (1)\nbefore quota_off sets it to NULL(2) and use it (3) after that, NULL pointer\ndereference will be triggered.\n\nSo let\u0027s fix it by using a temporary pointer to avoid this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26878",
          "url": "https://www.suse.com/security/cve/CVE-2024-26878"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223060 for CVE-2024-26878",
          "url": "https://bugzilla.suse.com/1223060"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26878"
    },
    {
      "cve": "CVE-2024-26879",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26879"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: meson: Add missing clocks to axg_clk_regmaps\n\nSome clocks were missing from axg_clk_regmaps, which caused kernel panic\nduring cat /sys/kernel/debug/clk/clk_summary\n\n[   57.349402] Unable to handle kernel NULL pointer dereference at virtual address 00000000000001fc\n...\n[   57.430002] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[   57.436900] pc : regmap_read+0x1c/0x88\n[   57.440608] lr : clk_regmap_gate_is_enabled+0x3c/0xb0\n[   57.445611] sp : ffff800082f1b690\n[   57.448888] x29: ffff800082f1b690 x28: 0000000000000000 x27: ffff800080eb9a70\n[   57.455961] x26: 0000000000000007 x25: 0000000000000016 x24: 0000000000000000\n[   57.463033] x23: ffff800080e8b488 x22: 0000000000000015 x21: ffff00000e7e7000\n[   57.470106] x20: ffff00000400ec00 x19: 0000000000000000 x18: ffffffffffffffff\n[   57.477178] x17: 0000000000000000 x16: 0000000000000000 x15: ffff0000042a3000\n[   57.484251] x14: 0000000000000000 x13: ffff0000042a2fec x12: 0000000005f5e100\n[   57.491323] x11: abcc77118461cefd x10: 0000000000000020 x9 : ffff8000805e4b24\n[   57.498396] x8 : ffff0000028063c0 x7 : ffff800082f1b710 x6 : ffff800082f1b710\n[   57.505468] x5 : 00000000ffffffd0 x4 : ffff800082f1b6e0 x3 : 0000000000001000\n[   57.512541] x2 : ffff800082f1b6e4 x1 : 000000000000012c x0 : 0000000000000000\n[   57.519615] Call trace:\n[   57.522030]  regmap_read+0x1c/0x88\n[   57.525393]  clk_regmap_gate_is_enabled+0x3c/0xb0\n[   57.530050]  clk_core_is_enabled+0x44/0x120\n[   57.534190]  clk_summary_show_subtree+0x154/0x2f0\n[   57.538847]  clk_summary_show_subtree+0x220/0x2f0\n[   57.543505]  clk_summary_show_subtree+0x220/0x2f0\n[   57.548162]  clk_summary_show_subtree+0x220/0x2f0\n[   57.552820]  clk_summary_show_subtree+0x220/0x2f0\n[   57.557477]  clk_summary_show_subtree+0x220/0x2f0\n[   57.562135]  clk_summary_show_subtree+0x220/0x2f0\n[   57.566792]  clk_summary_show_subtree+0x220/0x2f0\n[   57.571450]  clk_summary_show+0x84/0xb8\n[   57.575245]  seq_read_iter+0x1bc/0x4b8\n[   57.578954]  seq_read+0x8c/0xd0\n[   57.582059]  full_proxy_read+0x68/0xc8\n[   57.585767]  vfs_read+0xb0/0x268\n[   57.588959]  ksys_read+0x70/0x108\n[   57.592236]  __arm64_sys_read+0x24/0x38\n[   57.596031]  invoke_syscall+0x50/0x128\n[   57.599740]  el0_svc_common.constprop.0+0x48/0xf8\n[   57.604397]  do_el0_svc+0x28/0x40\n[   57.607675]  el0_svc+0x34/0xb8\n[   57.610694]  el0t_64_sync_handler+0x13c/0x158\n[   57.615006]  el0t_64_sync+0x190/0x198\n[   57.618635] Code: a9bd7bfd 910003fd a90153f3 aa0003f3 (b941fc00)\n[   57.624668] ---[ end trace 0000000000000000 ]---\n\n[jbrunet: add missing Fixes tag]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26879",
          "url": "https://www.suse.com/security/cve/CVE-2024-26879"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223066 for CVE-2024-26879",
          "url": "https://bugzilla.suse.com/1223066"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26879"
    },
    {
      "cve": "CVE-2024-26881",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26881"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is received on HIP08 devices\n\nThe HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL, but the hardware can receive 1588 messages,\nand set the HNS3_RXD_TS_VLD_B bit, so, if match this case, the\naccess of hdev-\u003eptp-\u003eflags will cause a kernel crash:\n\n[ 5888.946472] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n[ 5888.946475] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 5889.266118] pc : hclge_ptp_get_rx_hwts+0x40/0x170 [hclge]\n[ 5889.272612] lr : hclge_ptp_get_rx_hwts+0x34/0x170 [hclge]\n[ 5889.279101] sp : ffff800012c3bc50\n[ 5889.283516] x29: ffff800012c3bc50 x28: ffff2040002be040\n[ 5889.289927] x27: ffff800009116484 x26: 0000000080007500\n[ 5889.296333] x25: 0000000000000000 x24: ffff204001c6f000\n[ 5889.302738] x23: ffff204144f53c00 x22: 0000000000000000\n[ 5889.309134] x21: 0000000000000000 x20: ffff204004220080\n[ 5889.315520] x19: ffff204144f53c00 x18: 0000000000000000\n[ 5889.321897] x17: 0000000000000000 x16: 0000000000000000\n[ 5889.328263] x15: 0000004000140ec8 x14: 0000000000000000\n[ 5889.334617] x13: 0000000000000000 x12: 00000000010011df\n[ 5889.340965] x11: bbfeff4d22000000 x10: 0000000000000000\n[ 5889.347303] x9 : ffff800009402124 x8 : 0200f78811dfbb4d\n[ 5889.353637] x7 : 2200000000191b01 x6 : ffff208002a7d480\n[ 5889.359959] x5 : 0000000000000000 x4 : 0000000000000000\n[ 5889.366271] x3 : 0000000000000000 x2 : 0000000000000000\n[ 5889.372567] x1 : 0000000000000000 x0 : ffff20400095c080\n[ 5889.378857] Call trace:\n[ 5889.382285] hclge_ptp_get_rx_hwts+0x40/0x170 [hclge]\n[ 5889.388304] hns3_handle_bdinfo+0x324/0x410 [hns3]\n[ 5889.394055] hns3_handle_rx_bd+0x60/0x150 [hns3]\n[ 5889.399624] hns3_clean_rx_ring+0x84/0x170 [hns3]\n[ 5889.405270] hns3_nic_common_poll+0xa8/0x220 [hns3]\n[ 5889.411084] napi_poll+0xcc/0x264\n[ 5889.415329] net_rx_action+0xd4/0x21c\n[ 5889.419911] __do_softirq+0x130/0x358\n[ 5889.424484] irq_exit+0x134/0x154\n[ 5889.428700] __handle_domain_irq+0x88/0xf0\n[ 5889.433684] gic_handle_irq+0x78/0x2c0\n[ 5889.438319] el1_irq+0xb8/0x140\n[ 5889.442354] arch_cpu_idle+0x18/0x40\n[ 5889.446816] default_idle_call+0x5c/0x1c0\n[ 5889.451714] cpuidle_idle_call+0x174/0x1b0\n[ 5889.456692] do_idle+0xc8/0x160\n[ 5889.460717] cpu_startup_entry+0x30/0xfc\n[ 5889.465523] secondary_start_kernel+0x158/0x1ec\n[ 5889.470936] Code: 97ffab78 f9411c14 91408294 f9457284 (f9400c80)\n[ 5889.477950] SMP: stopping secondary CPUs\n[ 5890.514626] SMP: failed to stop secondary CPUs 0-69,71-95\n[ 5890.522951] Starting crashdump kernel...",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26881",
          "url": "https://www.suse.com/security/cve/CVE-2024-26881"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223041 for CVE-2024-26881",
          "url": "https://bugzilla.suse.com/1223041"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26881"
    },
    {
      "cve": "CVE-2024-26882",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26882"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()\n\nApply the same fix than ones found in :\n\n8d975c15c0cd (\"ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()\")\n1ca1ba465e55 (\"geneve: make sure to pull inner header in geneve_rx()\")\n\nWe have to save skb-\u003enetwork_header in a temporary variable\nin order to be able to recompute the network_header pointer\nafter a pskb_inet_may_pull() call.\n\npskb_inet_may_pull() makes sure the needed headers are in skb-\u003ehead.\n\nsyzbot reported:\nBUG: KMSAN: uninit-value in __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n BUG: KMSAN: uninit-value in INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n BUG: KMSAN: uninit-value in IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n BUG: KMSAN: uninit-value in ip_tunnel_rcv+0xed9/0x2ed0 net/ipv4/ip_tunnel.c:409\n  __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n  INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n  IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n  ip_tunnel_rcv+0xed9/0x2ed0 net/ipv4/ip_tunnel.c:409\n  __ipgre_rcv+0x9bc/0xbc0 net/ipv4/ip_gre.c:389\n  ipgre_rcv net/ipv4/ip_gre.c:411 [inline]\n  gre_rcv+0x423/0x19f0 net/ipv4/ip_gre.c:447\n  gre_rcv+0x2a4/0x390 net/ipv4/gre_demux.c:163\n  ip_protocol_deliver_rcu+0x264/0x1300 net/ipv4/ip_input.c:205\n  ip_local_deliver_finish+0x2b8/0x440 net/ipv4/ip_input.c:233\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254\n  dst_input include/net/dst.h:461 [inline]\n  ip_rcv_finish net/ipv4/ip_input.c:449 [inline]\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip_rcv+0x46f/0x760 net/ipv4/ip_input.c:569\n  __netif_receive_skb_one_core net/core/dev.c:5534 [inline]\n  __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5648\n  netif_receive_skb_internal net/core/dev.c:5734 [inline]\n  netif_receive_skb+0x58/0x660 net/core/dev.c:5793\n  tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1556\n  tun_get_user+0x53b9/0x66e0 drivers/net/tun.c:2009\n  tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2055\n  call_write_iter include/linux/fs.h:2087 [inline]\n  new_sync_write fs/read_write.c:497 [inline]\n  vfs_write+0xb6b/0x1520 fs/read_write.c:590\n  ksys_write+0x20f/0x4c0 fs/read_write.c:643\n  __do_sys_write fs/read_write.c:655 [inline]\n  __se_sys_write fs/read_write.c:652 [inline]\n  __x64_sys_write+0x93/0xd0 fs/read_write.c:652\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n  __alloc_pages+0x9a6/0xe00 mm/page_alloc.c:4590\n  alloc_pages_mpol+0x62b/0x9d0 mm/mempolicy.c:2133\n  alloc_pages+0x1be/0x1e0 mm/mempolicy.c:2204\n  skb_page_frag_refill+0x2bf/0x7c0 net/core/sock.c:2909\n  tun_build_skb drivers/net/tun.c:1686 [inline]\n  tun_get_user+0xe0a/0x66e0 drivers/net/tun.c:1826\n  tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2055\n  call_write_iter include/linux/fs.h:2087 [inline]\n  new_sync_write fs/read_write.c:497 [inline]\n  vfs_write+0xb6b/0x1520 fs/read_write.c:590\n  ksys_write+0x20f/0x4c0 fs/read_write.c:643\n  __do_sys_write fs/read_write.c:655 [inline]\n  __se_sys_write fs/read_write.c:652 [inline]\n  __x64_sys_write+0x93/0xd0 fs/read_write.c:652\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26882",
          "url": "https://www.suse.com/security/cve/CVE-2024-26882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223034 for CVE-2024-26882",
          "url": "https://bugzilla.suse.com/1223034"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26882"
    },
    {
      "cve": "CVE-2024-26883",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26883"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix stackmap overflow check on 32-bit arches\n\nThe stackmap code relies on roundup_pow_of_two() to compute the number\nof hash buckets, and contains an overflow check by checking if the\nresulting value is 0. However, on 32-bit arches, the roundup code itself\ncan overflow by doing a 32-bit left-shift of an unsigned long value,\nwhich is undefined behaviour, so it is not guaranteed to truncate\nneatly. This was triggered by syzbot on the DEVMAP_HASH type, which\ncontains the same check, copied from the hashtab code.\n\nThe commit in the fixes tag actually attempted to fix this, but the fix\ndid not account for the UB, so the fix only works on CPUs where an\noverflow does result in a neat truncation to zero, which is not\nguaranteed. Checking the value before rounding does not have this\nproblem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26883",
          "url": "https://www.suse.com/security/cve/CVE-2024-26883"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223035 for CVE-2024-26883",
          "url": "https://bugzilla.suse.com/1223035"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26883"
    },
    {
      "cve": "CVE-2024-26884",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26884"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix hashtab overflow check on 32-bit arches\n\nThe hashtab code relies on roundup_pow_of_two() to compute the number of\nhash buckets, and contains an overflow check by checking if the\nresulting value is 0. However, on 32-bit arches, the roundup code itself\ncan overflow by doing a 32-bit left-shift of an unsigned long value,\nwhich is undefined behaviour, so it is not guaranteed to truncate\nneatly. This was triggered by syzbot on the DEVMAP_HASH type, which\ncontains the same check, copied from the hashtab code. So apply the same\nfix to hashtab, by moving the overflow check to before the roundup.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26884",
          "url": "https://www.suse.com/security/cve/CVE-2024-26884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223189 for CVE-2024-26884",
          "url": "https://bugzilla.suse.com/1223189"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26884"
    },
    {
      "cve": "CVE-2024-26885",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26885"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix DEVMAP_HASH overflow check on 32-bit arches\n\nThe devmap code allocates a number hash buckets equal to the next power\nof two of the max_entries value provided when creating the map. When\nrounding up to the next power of two, the 32-bit variable storing the\nnumber of buckets can overflow, and the code checks for overflow by\nchecking if the truncated 32-bit value is equal to 0. However, on 32-bit\narches the rounding up itself can overflow mid-way through, because it\nends up doing a left-shift of 32 bits on an unsigned long value. If the\nsize of an unsigned long is four bytes, this is undefined behaviour, so\nthere is no guarantee that we\u0027ll end up with a nice and tidy 0-value at\nthe end.\n\nSyzbot managed to turn this into a crash on arm32 by creating a\nDEVMAP_HASH with max_entries \u003e 0x80000000 and then trying to update it.\nFix this by moving the overflow check to before the rounding up\noperation.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26885",
          "url": "https://www.suse.com/security/cve/CVE-2024-26885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223190 for CVE-2024-26885",
          "url": "https://bugzilla.suse.com/1223190"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26885"
    },
    {
      "cve": "CVE-2024-26891",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26891"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Don\u0027t issue ATS Invalidation request when device is disconnected\n\nFor those endpoint devices connect to system via hotplug capable ports,\nusers could request a hot reset to the device by flapping device\u0027s link\nthrough setting the slot\u0027s link control register, as pciehp_ist() DLLSC\ninterrupt sequence response, pciehp will unload the device driver and\nthen power it off. thus cause an IOMMU device-TLB invalidation (Intel\nVT-d spec, or ATS Invalidation in PCIe spec r6.1) request for non-existence\ntarget device to be sent and deadly loop to retry that request after ITE\nfault triggered in interrupt context.\n\nThat would cause following continuous hard lockup warning and system hang\n\n[ 4211.433662] pcieport 0000:17:01.0: pciehp: Slot(108): Link Down\n[ 4211.433664] pcieport 0000:17:01.0: pciehp: Slot(108): Card not present\n[ 4223.822591] NMI watchdog: Watchdog detected hard LOCKUP on cpu 144\n[ 4223.822622] CPU: 144 PID: 1422 Comm: irq/57-pciehp Kdump: loaded Tainted: G S\n         OE    kernel version xxxx\n[ 4223.822623] Hardware name: vendorname xxxx 666-106,\nBIOS 01.01.02.03.01 05/15/2023\n[ 4223.822623] RIP: 0010:qi_submit_sync+0x2c0/0x490\n[ 4223.822624] Code: 48 be 00 00 00 00 00 08 00 00 49 85 74 24 20 0f 95 c1 48 8b\n 57 10 83 c1 04 83 3c 1a 03 0f 84 a2 01 00 00 49 8b 04 24 8b 70 34 \u003c40\u003e f6 c6 1\n0 74 17 49 8b 04 24 8b 80 80 00 00 00 89 c2 d3 fa 41 39\n[ 4223.822624] RSP: 0018:ffffc4f074f0bbb8 EFLAGS: 00000093\n[ 4223.822625] RAX: ffffc4f040059000 RBX: 0000000000000014 RCX: 0000000000000005\n[ 4223.822625] RDX: ffff9f3841315800 RSI: 0000000000000000 RDI: ffff9f38401a8340\n[ 4223.822625] RBP: ffff9f38401a8340 R08: ffffc4f074f0bc00 R09: 0000000000000000\n[ 4223.822626] R10: 0000000000000010 R11: 0000000000000018 R12: ffff9f384005e200\n[ 4223.822626] R13: 0000000000000004 R14: 0000000000000046 R15: 0000000000000004\n[ 4223.822626] FS:  0000000000000000(0000) GS:ffffa237ae400000(0000)\nknlGS:0000000000000000\n[ 4223.822627] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4223.822627] CR2: 00007ffe86515d80 CR3: 000002fd3000a001 CR4: 0000000000770ee0\n[ 4223.822627] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4223.822628] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 4223.822628] PKRU: 55555554\n[ 4223.822628] Call Trace:\n[ 4223.822628]  qi_flush_dev_iotlb+0xb1/0xd0\n[ 4223.822628]  __dmar_remove_one_dev_info+0x224/0x250\n[ 4223.822629]  dmar_remove_one_dev_info+0x3e/0x50\n[ 4223.822629]  intel_iommu_release_device+0x1f/0x30\n[ 4223.822629]  iommu_release_device+0x33/0x60\n[ 4223.822629]  iommu_bus_notifier+0x7f/0x90\n[ 4223.822630]  blocking_notifier_call_chain+0x60/0x90\n[ 4223.822630]  device_del+0x2e5/0x420\n[ 4223.822630]  pci_remove_bus_device+0x70/0x110\n[ 4223.822630]  pciehp_unconfigure_device+0x7c/0x130\n[ 4223.822631]  pciehp_disable_slot+0x6b/0x100\n[ 4223.822631]  pciehp_handle_presence_or_link_change+0xd8/0x320\n[ 4223.822631]  pciehp_ist+0x176/0x180\n[ 4223.822631]  ? irq_finalize_oneshot.part.50+0x110/0x110\n[ 4223.822632]  irq_thread_fn+0x19/0x50\n[ 4223.822632]  irq_thread+0x104/0x190\n[ 4223.822632]  ? irq_forced_thread_fn+0x90/0x90\n[ 4223.822632]  ? irq_thread_check_affinity+0xe0/0xe0\n[ 4223.822633]  kthread+0x114/0x130\n[ 4223.822633]  ? __kthread_cancel_work+0x40/0x40\n[ 4223.822633]  ret_from_fork+0x1f/0x30\n[ 4223.822633] Kernel panic - not syncing: Hard LOCKUP\n[ 4223.822634] CPU: 144 PID: 1422 Comm: irq/57-pciehp Kdump: loaded Tainted: G S\n         OE     kernel version xxxx\n[ 4223.822634] Hardware name: vendorname xxxx 666-106,\nBIOS 01.01.02.03.01 05/15/2023\n[ 4223.822634] Call Trace:\n[ 4223.822634]  \u003cNMI\u003e\n[ 4223.822635]  dump_stack+0x6d/0x88\n[ 4223.822635]  panic+0x101/0x2d0\n[ 4223.822635]  ? ret_from_fork+0x11/0x30\n[ 4223.822635]  nmi_panic.cold.14+0xc/0xc\n[ 4223.822636]  watchdog_overflow_callback.cold.8+0x6d/0x81\n[ 4223.822636]  __perf_event_overflow+0x4f/0xf0\n[ 4223.822636]  handle_pmi_common\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26891",
          "url": "https://www.suse.com/security/cve/CVE-2024-26891"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223037 for CVE-2024-26891",
          "url": "https://bugzilla.suse.com/1223037"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26891"
    },
    {
      "cve": "CVE-2024-26893",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26893"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Fix double free in SMC transport cleanup path\n\nWhen the generic SCMI code tears down a channel, it calls the chan_free\ncallback function, defined by each transport. Since multiple protocols\nmight share the same transport_info member, chan_free() might want to\nclean up the same member multiple times within the given SCMI transport\nimplementation. In this case, it is SMC transport. This will lead to a NULL\npointer dereference at the second time:\n\n    | scmi_protocol scmi_dev.1: Enabled polling mode TX channel - prot_id:16\n    | arm-scmi firmware:scmi: SCMI Notifications - Core Enabled.\n    | arm-scmi firmware:scmi: unable to communicate with SCMI\n    | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n    | Mem abort info:\n    |   ESR = 0x0000000096000004\n    |   EC = 0x25: DABT (current EL), IL = 32 bits\n    |   SET = 0, FnV = 0\n    |   EA = 0, S1PTW = 0\n    |   FSC = 0x04: level 0 translation fault\n    | Data abort info:\n    |   ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n    |   CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n    |   GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n    | user pgtable: 4k pages, 48-bit VAs, pgdp=0000000881ef8000\n    | [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n    | Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n    | Modules linked in:\n    | CPU: 4 PID: 1 Comm: swapper/0 Not tainted 6.7.0-rc2-00124-g455ef3d016c9-dirty #793\n    | Hardware name: FVP Base RevC (DT)\n    | pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n    | pc : smc_chan_free+0x3c/0x6c\n    | lr : smc_chan_free+0x3c/0x6c\n    | Call trace:\n    |  smc_chan_free+0x3c/0x6c\n    |  idr_for_each+0x68/0xf8\n    |  scmi_cleanup_channels.isra.0+0x2c/0x58\n    |  scmi_probe+0x434/0x734\n    |  platform_probe+0x68/0xd8\n    |  really_probe+0x110/0x27c\n    |  __driver_probe_device+0x78/0x12c\n    |  driver_probe_device+0x3c/0x118\n    |  __driver_attach+0x74/0x128\n    |  bus_for_each_dev+0x78/0xe0\n    |  driver_attach+0x24/0x30\n    |  bus_add_driver+0xe4/0x1e8\n    |  driver_register+0x60/0x128\n    |  __platform_driver_register+0x28/0x34\n    |  scmi_driver_init+0x84/0xc0\n    |  do_one_initcall+0x78/0x33c\n    |  kernel_init_freeable+0x2b8/0x51c\n    |  kernel_init+0x24/0x130\n    |  ret_from_fork+0x10/0x20\n    | Code: f0004701 910a0021 aa1403e5 97b91c70 (b9400280)\n    | ---[ end trace 0000000000000000 ]---\n\nSimply check for the struct pointer being NULL before trying to access\nits members, to avoid this situation.\n\nThis was found when a transport doesn\u0027t really work (for instance no SMC\nservice), the probe routines then tries to clean up, and triggers a crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26893",
          "url": "https://www.suse.com/security/cve/CVE-2024-26893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223196 for CVE-2024-26893",
          "url": "https://bugzilla.suse.com/1223196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26893"
    },
    {
      "cve": "CVE-2024-26895",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26895"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wilc1000: prevent use-after-free on vif when cleaning up all interfaces\n\nwilc_netdev_cleanup currently triggers a KASAN warning, which can be\nobserved on interface registration error path, or simply by\nremoving the module/unbinding device from driver:\n\necho spi0.1 \u003e /sys/bus/spi/drivers/wilc1000_spi/unbind\n\n==================================================================\nBUG: KASAN: slab-use-after-free in wilc_netdev_cleanup+0x508/0x5cc\nRead of size 4 at addr c54d1ce8 by task sh/86\n\nCPU: 0 PID: 86 Comm: sh Not tainted 6.8.0-rc1+ #117\nHardware name: Atmel SAMA5\n unwind_backtrace from show_stack+0x18/0x1c\n show_stack from dump_stack_lvl+0x34/0x58\n dump_stack_lvl from print_report+0x154/0x500\n print_report from kasan_report+0xac/0xd8\n kasan_report from wilc_netdev_cleanup+0x508/0x5cc\n wilc_netdev_cleanup from wilc_bus_remove+0xc8/0xec\n wilc_bus_remove from spi_remove+0x8c/0xac\n spi_remove from device_release_driver_internal+0x434/0x5f8\n device_release_driver_internal from unbind_store+0xbc/0x108\n unbind_store from kernfs_fop_write_iter+0x398/0x584\n kernfs_fop_write_iter from vfs_write+0x728/0xf88\n vfs_write from ksys_write+0x110/0x1e4\n ksys_write from ret_fast_syscall+0x0/0x1c\n\n[...]\n\nAllocated by task 1:\n kasan_save_track+0x30/0x5c\n __kasan_kmalloc+0x8c/0x94\n __kmalloc_node+0x1cc/0x3e4\n kvmalloc_node+0x48/0x180\n alloc_netdev_mqs+0x68/0x11dc\n alloc_etherdev_mqs+0x28/0x34\n wilc_netdev_ifc_init+0x34/0x8ec\n wilc_cfg80211_init+0x690/0x910\n wilc_bus_probe+0xe0/0x4a0\n spi_probe+0x158/0x1b0\n really_probe+0x270/0xdf4\n __driver_probe_device+0x1dc/0x580\n driver_probe_device+0x60/0x140\n __driver_attach+0x228/0x5d4\n bus_for_each_dev+0x13c/0x1a8\n bus_add_driver+0x2a0/0x608\n driver_register+0x24c/0x578\n do_one_initcall+0x180/0x310\n kernel_init_freeable+0x424/0x484\n kernel_init+0x20/0x148\n ret_from_fork+0x14/0x28\n\nFreed by task 86:\n kasan_save_track+0x30/0x5c\n kasan_save_free_info+0x38/0x58\n __kasan_slab_free+0xe4/0x140\n kfree+0xb0/0x238\n device_release+0xc0/0x2a8\n kobject_put+0x1d4/0x46c\n netdev_run_todo+0x8fc/0x11d0\n wilc_netdev_cleanup+0x1e4/0x5cc\n wilc_bus_remove+0xc8/0xec\n spi_remove+0x8c/0xac\n device_release_driver_internal+0x434/0x5f8\n unbind_store+0xbc/0x108\n kernfs_fop_write_iter+0x398/0x584\n vfs_write+0x728/0xf88\n ksys_write+0x110/0x1e4\n ret_fast_syscall+0x0/0x1c\n [...]\n\nDavid Mosberger-Tan initial investigation [1] showed that this\nuse-after-free is due to netdevice unregistration during vif list\ntraversal. When unregistering a net device, since the needs_free_netdev has\nbeen set to true during registration, the netdevice object is also freed,\nand as a consequence, the corresponding vif object too, since it is\nattached to it as private netdevice data. The next occurrence of the loop\nthen tries to access freed vif pointer to the list to move forward in the\nlist.\n\nFix this use-after-free thanks to two mechanisms:\n- navigate in the list with list_for_each_entry_safe, which allows to\n  safely modify the list as we go through each element. For each element,\n  remove it from the list with list_del_rcu\n- make sure to wait for RCU grace period end after each vif removal to make\n  sure it is safe to free the corresponding vif too (through\n  unregister_netdev)\n\nSince we are in a RCU \"modifier\" path (not a \"reader\" path), and because\nsuch path is expected not to be concurrent to any other modifier (we are\nusing the vif_mutex lock), we do not need to use RCU list API, that\u0027s why\nwe can benefit from list_for_each_entry_safe.\n\n[1] https://lore.kernel.org/linux-wireless/ab077dbe58b1ea5de0a3b2ca21f275a07af967d2.camel@egauge.net/",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26895",
          "url": "https://www.suse.com/security/cve/CVE-2024-26895"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223197 for CVE-2024-26895",
          "url": "https://bugzilla.suse.com/1223197"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26895"
    },
    {
      "cve": "CVE-2024-26896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wfx: fix memory leak when starting AP\n\nKmemleak reported this error:\n\n    unreferenced object 0xd73d1180 (size 184):\n      comm \"wpa_supplicant\", pid 1559, jiffies 13006305 (age 964.245s)\n      hex dump (first 32 bytes):\n        00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n        00 00 00 00 00 00 00 00 1e 00 01 00 00 00 00 00  ................\n      backtrace:\n        [\u003c5ca11420\u003e] kmem_cache_alloc+0x20c/0x5ac\n        [\u003c127bdd74\u003e] __alloc_skb+0x144/0x170\n        [\u003cfb8a5e38\u003e] __netdev_alloc_skb+0x50/0x180\n        [\u003c0f9fa1d5\u003e] __ieee80211_beacon_get+0x290/0x4d4 [mac80211]\n        [\u003c7accd02d\u003e] ieee80211_beacon_get_tim+0x54/0x18c [mac80211]\n        [\u003c41e25cc3\u003e] wfx_start_ap+0xc8/0x234 [wfx]\n        [\u003c93a70356\u003e] ieee80211_start_ap+0x404/0x6b4 [mac80211]\n        [\u003ca4a661cd\u003e] nl80211_start_ap+0x76c/0x9e0 [cfg80211]\n        [\u003c47bd8b68\u003e] genl_rcv_msg+0x198/0x378\n        [\u003c453ef796\u003e] netlink_rcv_skb+0xd0/0x130\n        [\u003c6b7c977a\u003e] genl_rcv+0x34/0x44\n        [\u003c66b2d04d\u003e] netlink_unicast+0x1b4/0x258\n        [\u003cf965b9b6\u003e] netlink_sendmsg+0x1e8/0x428\n        [\u003caadb8231\u003e] ____sys_sendmsg+0x1e0/0x274\n        [\u003cd2b5212d\u003e] ___sys_sendmsg+0x80/0xb4\n        [\u003c69954f45\u003e] __sys_sendmsg+0x64/0xa8\n    unreferenced object 0xce087000 (size 1024):\n      comm \"wpa_supplicant\", pid 1559, jiffies 13006305 (age 964.246s)\n      hex dump (first 32 bytes):\n        00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n        10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00  ...@............\n      backtrace:\n        [\u003c9a993714\u003e] __kmalloc_track_caller+0x230/0x600\n        [\u003cf83ea192\u003e] kmalloc_reserve.constprop.0+0x30/0x74\n        [\u003ca2c61343\u003e] __alloc_skb+0xa0/0x170\n        [\u003cfb8a5e38\u003e] __netdev_alloc_skb+0x50/0x180\n        [\u003c0f9fa1d5\u003e] __ieee80211_beacon_get+0x290/0x4d4 [mac80211]\n        [\u003c7accd02d\u003e] ieee80211_beacon_get_tim+0x54/0x18c [mac80211]\n        [\u003c41e25cc3\u003e] wfx_start_ap+0xc8/0x234 [wfx]\n        [\u003c93a70356\u003e] ieee80211_start_ap+0x404/0x6b4 [mac80211]\n        [\u003ca4a661cd\u003e] nl80211_start_ap+0x76c/0x9e0 [cfg80211]\n        [\u003c47bd8b68\u003e] genl_rcv_msg+0x198/0x378\n        [\u003c453ef796\u003e] netlink_rcv_skb+0xd0/0x130\n        [\u003c6b7c977a\u003e] genl_rcv+0x34/0x44\n        [\u003c66b2d04d\u003e] netlink_unicast+0x1b4/0x258\n        [\u003cf965b9b6\u003e] netlink_sendmsg+0x1e8/0x428\n        [\u003caadb8231\u003e] ____sys_sendmsg+0x1e0/0x274\n        [\u003cd2b5212d\u003e] ___sys_sendmsg+0x80/0xb4\n\nHowever, since the kernel is build optimized, it seems the stack is not\naccurate. It appears the issue is related to wfx_set_mfp_ap(). The issue\nis obvious in this function: memory allocated by ieee80211_beacon_get()\nis never released. Fixing this leak makes kmemleak happy.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26896",
          "url": "https://www.suse.com/security/cve/CVE-2024-26896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223042 for CVE-2024-26896",
          "url": "https://bugzilla.suse.com/1223042"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26896"
    },
    {
      "cve": "CVE-2024-26897",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26897"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete\n\nThe ath9k_wmi_event_tasklet() used in ath9k_htc assumes that all the data\nstructures have been fully initialised by the time it runs. However, because of\nthe order in which things are initialised, this is not guaranteed to be the\ncase, because the device is exposed to the USB subsystem before the ath9k driver\ninitialisation is completed.\n\nWe already committed a partial fix for this in commit:\n8b3046abc99e (\"ath9k_htc: fix NULL pointer dereference at ath9k_htc_tx_get_packet()\")\n\nHowever, that commit only aborted the WMI_TXSTATUS_EVENTID command in the event\ntasklet, pairing it with an \"initialisation complete\" bit in the TX struct. It\nseems syzbot managed to trigger the race for one of the other commands as well,\nso let\u0027s just move the existing synchronisation bit to cover the whole\ntasklet (setting it at the end of ath9k_htc_probe_device() instead of inside\nath9k_tx_init()).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26897",
          "url": "https://www.suse.com/security/cve/CVE-2024-26897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223323 for CVE-2024-26897",
          "url": "https://bugzilla.suse.com/1223323"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26897"
    },
    {
      "cve": "CVE-2024-26898",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26898"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\naoe: fix the potential use-after-free problem in aoecmd_cfg_pkts\n\nThis patch is against CVE-2023-6270. The description of cve is:\n\n  A flaw was found in the ATA over Ethernet (AoE) driver in the Linux\n  kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on\n  `struct net_device`, and a use-after-free can be triggered by racing\n  between the free on the struct and the access through the `skbtxq`\n  global queue. This could lead to a denial of service condition or\n  potential code execution.\n\nIn aoecmd_cfg_pkts(), it always calls dev_put(ifp) when skb initial\ncode is finished. But the net_device ifp will still be used in\nlater tx()-\u003edev_queue_xmit() in kthread. Which means that the\ndev_put(ifp) should NOT be called in the success path of skb\ninitial code in aoecmd_cfg_pkts(). Otherwise tx() may run into\nuse-after-free because the net_device is freed.\n\nThis patch removed the dev_put(ifp) in the success path in\naoecmd_cfg_pkts(), and added dev_put() after skb xmit in tx().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26898",
          "url": "https://www.suse.com/security/cve/CVE-2024-26898"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218562 for CVE-2024-26898",
          "url": "https://bugzilla.suse.com/1218562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223016 for CVE-2024-26898",
          "url": "https://bugzilla.suse.com/1223016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223017 for CVE-2024-26898",
          "url": "https://bugzilla.suse.com/1223017"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-26898"
    },
    {
      "cve": "CVE-2024-26901",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26901"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndo_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak\n\nsyzbot identified a kernel information leak vulnerability in\ndo_sys_name_to_handle() and issued the following report [1].\n\n[1]\n\"BUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline]\nBUG: KMSAN: kernel-infoleak in _copy_to_user+0xbc/0x100 lib/usercopy.c:40\n instrument_copy_to_user include/linux/instrumented.h:114 [inline]\n _copy_to_user+0xbc/0x100 lib/usercopy.c:40\n copy_to_user include/linux/uaccess.h:191 [inline]\n do_sys_name_to_handle fs/fhandle.c:73 [inline]\n __do_sys_name_to_handle_at fs/fhandle.c:112 [inline]\n __se_sys_name_to_handle_at+0x949/0xb10 fs/fhandle.c:94\n __x64_sys_name_to_handle_at+0xe4/0x140 fs/fhandle.c:94\n ...\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n __kmem_cache_alloc_node+0x5c9/0x970 mm/slub.c:3517\n __do_kmalloc_node mm/slab_common.c:1006 [inline]\n __kmalloc+0x121/0x3c0 mm/slab_common.c:1020\n kmalloc include/linux/slab.h:604 [inline]\n do_sys_name_to_handle fs/fhandle.c:39 [inline]\n __do_sys_name_to_handle_at fs/fhandle.c:112 [inline]\n __se_sys_name_to_handle_at+0x441/0xb10 fs/fhandle.c:94\n __x64_sys_name_to_handle_at+0xe4/0x140 fs/fhandle.c:94\n ...\n\nBytes 18-19 of 20 are uninitialized\nMemory access of size 20 starts at ffff888128a46380\nData copied to user address 0000000020000240\"\n\nPer Chuck Lever\u0027s suggestion, use kzalloc() instead of kmalloc() to\nsolve the problem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26901",
          "url": "https://www.suse.com/security/cve/CVE-2024-26901"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223198 for CVE-2024-26901",
          "url": "https://bugzilla.suse.com/1223198"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26901"
    },
    {
      "cve": "CVE-2024-26903",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26903"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security\n\nDuring our fuzz testing of the connection and disconnection process at the\nRFCOMM layer, we discovered this bug. By comparing the packets from a\nnormal connection and disconnection process with the testcase that\ntriggered a KASAN report. We analyzed the cause of this bug as follows:\n\n1. In the packets captured during a normal connection, the host sends a\n`Read Encryption Key Size` type of `HCI_CMD` packet\n(Command Opcode: 0x1408) to the controller to inquire the length of\nencryption key.After receiving this packet, the controller immediately\nreplies with a Command Completepacket (Event Code: 0x0e) to return the\nEncryption Key Size.\n\n2. In our fuzz test case, the timing of the controller\u0027s response to this\npacket was delayed to an unexpected point: after the RFCOMM and L2CAP\nlayers had disconnected but before the HCI layer had disconnected.\n\n3. After receiving the Encryption Key Size Response at the time described\nin point 2, the host still called the rfcomm_check_security function.\nHowever, by this time `struct l2cap_conn *conn = l2cap_pi(sk)-\u003echan-\u003econn;`\nhad already been released, and when the function executed\n`return hci_conn_security(conn-\u003ehcon, d-\u003esec_level, auth_type, d-\u003eout);`,\nspecifically when accessing `conn-\u003ehcon`, a null-ptr-deref error occurred.\n\nTo fix this bug, check if `sk-\u003esk_state` is BT_CLOSED before calling\nrfcomm_recv_frame in rfcomm_process_rx.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26903",
          "url": "https://www.suse.com/security/cve/CVE-2024-26903"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223187 for CVE-2024-26903",
          "url": "https://bugzilla.suse.com/1223187"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26903"
    },
    {
      "cve": "CVE-2024-26915",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26915"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Reset IH OVERFLOW_CLEAR bit\n\nAllows us to detect subsequent IH ring buffer overflows as well.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26915",
          "url": "https://www.suse.com/security/cve/CVE-2024-26915"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223207 for CVE-2024-26915",
          "url": "https://bugzilla.suse.com/1223207"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26915"
    },
    {
      "cve": "CVE-2024-26917",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26917"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: Revert \"scsi: fcoe: Fix potential deadlock on \u0026fip-\u003ectlr_lock\"\n\nThis reverts commit 1a1975551943f681772720f639ff42fbaa746212.\n\nThis commit causes interrupts to be lost for FCoE devices, since it changed\nsping locks from \"bh\" to \"irqsave\".\n\nInstead, a work queue should be used, and will be addressed in a separate\ncommit.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26917",
          "url": "https://www.suse.com/security/cve/CVE-2024-26917"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223056 for CVE-2024-26917",
          "url": "https://bugzilla.suse.com/1223056"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26917"
    },
    {
      "cve": "CVE-2024-26927",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26927"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: SOF: Add some bounds checking to firmware data\n\nSmatch complains about \"head-\u003efull_size - head-\u003eheader_size\" can\nunderflow.  To some extent, we\u0027re always going to have to trust the\nfirmware a bit.  However, it\u0027s easy enough to add a check for negatives,\nand let\u0027s add a upper bounds check as well.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26927",
          "url": "https://www.suse.com/security/cve/CVE-2024-26927"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223525 for CVE-2024-26927",
          "url": "https://bugzilla.suse.com/1223525"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26927"
    },
    {
      "cve": "CVE-2024-26933",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26933"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: core: Fix deadlock in port \"disable\" sysfs attribute\n\nThe show and store callback routines for the \"disable\" sysfs attribute\nfile in port.c acquire the device lock for the port\u0027s parent hub\ndevice.  This can cause problems if another process has locked the hub\nto remove it or change its configuration:\n\n\tRemoving the hub or changing its configuration requires the\n\thub interface to be removed, which requires the port device\n\tto be removed, and device_del() waits until all outstanding\n\tsysfs attribute callbacks for the ports have returned.  The\n\tlock can\u0027t be released until then.\n\n\tBut the disable_show() or disable_store() routine can\u0027t return\n\tuntil after it has acquired the lock.\n\nThe resulting deadlock can be avoided by calling\nsysfs_break_active_protection().  This will cause the sysfs core not\nto wait for the attribute\u0027s callback routine to return, allowing the\nremoval to proceed.  The disadvantage is that after making this call,\nthere is no guarantee that the hub structure won\u0027t be deallocated at\nany moment.  To prevent this, we have to acquire a reference to it\nfirst by calling hub_get().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26933",
          "url": "https://www.suse.com/security/cve/CVE-2024-26933"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223670 for CVE-2024-26933",
          "url": "https://bugzilla.suse.com/1223670"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26933"
    },
    {
      "cve": "CVE-2024-26939",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26939"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/vma: Fix UAF on destroy against retire race\n\nObject debugging tools were sporadically reporting illegal attempts to\nfree a still active i915 VMA object when parking a GT believed to be idle.\n\n[161.359441] ODEBUG: free active (active state 0) object: ffff88811643b958 object type: i915_active hint: __i915_vma_active+0x0/0x50 [i915]\n[161.360082] WARNING: CPU: 5 PID: 276 at lib/debugobjects.c:514 debug_print_object+0x80/0xb0\n...\n[161.360304] CPU: 5 PID: 276 Comm: kworker/5:2 Not tainted 6.5.0-rc1-CI_DRM_13375-g003f860e5577+ #1\n[161.360314] Hardware name: Intel Corporation Rocket Lake Client Platform/RocketLake S UDIMM 6L RVP, BIOS RKLSFWI1.R00.3173.A03.2204210138 04/21/2022\n[161.360322] Workqueue: i915-unordered __intel_wakeref_put_work [i915]\n[161.360592] RIP: 0010:debug_print_object+0x80/0xb0\n...\n[161.361347] debug_object_free+0xeb/0x110\n[161.361362] i915_active_fini+0x14/0x130 [i915]\n[161.361866] release_references+0xfe/0x1f0 [i915]\n[161.362543] i915_vma_parked+0x1db/0x380 [i915]\n[161.363129] __gt_park+0x121/0x230 [i915]\n[161.363515] ____intel_wakeref_put_last+0x1f/0x70 [i915]\n\nThat has been tracked down to be happening when another thread is\ndeactivating the VMA inside __active_retire() helper, after the VMA\u0027s\nactive counter has been already decremented to 0, but before deactivation\nof the VMA\u0027s object is reported to the object debugging tool.\n\nWe could prevent from that race by serializing i915_active_fini() with\n__active_retire() via ref-\u003etree_lock, but that wouldn\u0027t stop the VMA from\nbeing used, e.g. from __i915_vma_retire() called at the end of\n__active_retire(), after that VMA has been already freed by a concurrent\ni915_vma_destroy() on return from the i915_active_fini().  Then, we should\nrather fix the issue at the VMA level, not in i915_active.\n\nSince __i915_vma_parked() is called from __gt_park() on last put of the\nGT\u0027s wakeref, the issue could be addressed by holding the GT wakeref long\nenough for __active_retire() to complete before that wakeref is released\nand the GT parked.\n\nI believe the issue was introduced by commit d93939730347 (\"drm/i915:\nRemove the vma refcount\") which moved a call to i915_active_fini() from\na dropped i915_vma_release(), called on last put of the removed VMA kref,\nto i915_vma_parked() processing path called on last put of a GT wakeref.\nHowever, its visibility to the object debugging tool was suppressed by a\nbug in i915_active that was fixed two weeks later with commit e92eb246feb9\n(\"drm/i915/active: Fix missing debug object activation\").\n\nA VMA associated with a request doesn\u0027t acquire a GT wakeref by itself.\nInstead, it depends on a wakeref held directly by the request\u0027s active\nintel_context for a GT associated with its VM, and indirectly on that\nintel_context\u0027s engine wakeref if the engine belongs to the same GT as the\nVMA\u0027s VM.  Those wakerefs are released asynchronously to VMA deactivation.\n\nFix the issue by getting a wakeref for the VMA\u0027s GT when activating it,\nand putting that wakeref only after the VMA is deactivated.  However,\nexclude global GTT from that processing path, otherwise the GPU never goes\nidle.  Since __i915_vma_retire() may be called from atomic contexts, use\nasync variant of wakeref put.  Also, to avoid circular locking dependency,\ntake care of acquiring the wakeref before VM mutex when both are needed.\n\nv7: Add inline comments with justifications for:\n    - using untracked variants of intel_gt_pm_get/put() (Nirmoy),\n    - using async variant of _put(),\n    - not getting the wakeref in case of a global GTT,\n    - always getting the first wakeref outside vm-\u003emutex.\nv6: Since __i915_vma_active/retire() callbacks are not serialized, storing\n    a wakeref tracking handle inside struct i915_vma is not safe, and\n    there is no other good place for that.  Use untracked variants of\n    intel_gt_pm_get/put_async().\nv5: Replace \"tile\" with \"GT\" across commit description (Rodrigo),\n  - \n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26939",
          "url": "https://www.suse.com/security/cve/CVE-2024-26939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223679 for CVE-2024-26939",
          "url": "https://bugzilla.suse.com/1223679"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223680 for CVE-2024-26939",
          "url": "https://bugzilla.suse.com/1223680"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-26939"
    },
    {
      "cve": "CVE-2024-26948",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26948"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add a dc_state NULL check in dc_state_release\n\n[How]\nCheck wheather state is NULL before releasing it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26948",
          "url": "https://www.suse.com/security/cve/CVE-2024-26948"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223664 for CVE-2024-26948",
          "url": "https://bugzilla.suse.com/1223664"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26948"
    },
    {
      "cve": "CVE-2024-26950",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26950"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: netlink: access device through ctx instead of peer\n\nThe previous commit fixed a bug that led to a NULL peer-\u003edevice being\ndereferenced. It\u0027s actually easier and faster performance-wise to\ninstead get the device from ctx-\u003ewg. This semantically makes more sense\ntoo, since ctx-\u003ewg-\u003epeer_allowedips.seq is compared with\nctx-\u003eallowedips_seq, basing them both in ctx. This also acts as a\ndefence in depth provision against freed peers.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26950",
          "url": "https://www.suse.com/security/cve/CVE-2024-26950"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223661 for CVE-2024-26950",
          "url": "https://bugzilla.suse.com/1223661"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26950"
    },
    {
      "cve": "CVE-2024-26951",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26951"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: netlink: check for dangling peer via is_dead instead of empty list\n\nIf all peers are removed via wg_peer_remove_all(), rather than setting\npeer_list to empty, the peer is added to a temporary list with a head on\nthe stack of wg_peer_remove_all(). If a netlink dump is resumed and the\ncursored peer is one that has been removed via wg_peer_remove_all(), it\nwill iterate from that peer and then attempt to dump freed peers.\n\nFix this by instead checking peer-\u003eis_dead, which was explictly created\nfor this purpose. Also move up the device_update_lock lockdep assertion,\nsince reading is_dead relies on that.\n\nIt can be reproduced by a small script like:\n\n    echo \"Setting config...\"\n    ip link add dev wg0 type wireguard\n    wg setconf wg0 /big-config\n    (\n            while true; do\n                    echo \"Showing config...\"\n                    wg showconf wg0 \u003e /dev/null\n            done\n    ) \u0026\n    sleep 4\n    wg setconf wg0 \u003c(printf \"[Peer]\\nPublicKey=$(wg genkey)\\n\")\n\nResulting in:\n\n    BUG: KASAN: slab-use-after-free in __lock_acquire+0x182a/0x1b20\n    Read of size 8 at addr ffff88811956ec70 by task wg/59\n    CPU: 2 PID: 59 Comm: wg Not tainted 6.8.0-rc2-debug+ #5\n    Call Trace:\n     \u003cTASK\u003e\n     dump_stack_lvl+0x47/0x70\n     print_address_description.constprop.0+0x2c/0x380\n     print_report+0xab/0x250\n     kasan_report+0xba/0xf0\n     __lock_acquire+0x182a/0x1b20\n     lock_acquire+0x191/0x4b0\n     down_read+0x80/0x440\n     get_peer+0x140/0xcb0\n     wg_get_device_dump+0x471/0x1130",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26951",
          "url": "https://www.suse.com/security/cve/CVE-2024-26951"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223660 for CVE-2024-26951",
          "url": "https://bugzilla.suse.com/1223660"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26951"
    },
    {
      "cve": "CVE-2024-26955",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26955"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent kernel bug at submit_bh_wbc()\n\nFix a bug where nilfs_get_block() returns a successful status when\nsearching and inserting the specified block both fail inconsistently.  If\nthis inconsistent behavior is not due to a previously fixed bug, then an\nunexpected race is occurring, so return a temporary error -EAGAIN instead.\n\nThis prevents callers such as __block_write_begin_int() from requesting a\nread into a buffer that is not mapped, which would cause the BUG_ON check\nfor the BH_Mapped flag in submit_bh_wbc() to fail.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26955",
          "url": "https://www.suse.com/security/cve/CVE-2024-26955"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223657 for CVE-2024-26955",
          "url": "https://bugzilla.suse.com/1223657"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26955"
    },
    {
      "cve": "CVE-2024-26956",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26956"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix failure to detect DAT corruption in btree and direct mappings\n\nPatch series \"nilfs2: fix kernel bug at submit_bh_wbc()\".\n\nThis resolves a kernel BUG reported by syzbot.  Since there are two\nflaws involved, I\u0027ve made each one a separate patch.\n\nThe first patch alone resolves the syzbot-reported bug, but I think\nboth fixes should be sent to stable, so I\u0027ve tagged them as such.\n\n\nThis patch (of 2):\n\nSyzbot has reported a kernel bug in submit_bh_wbc() when writing file data\nto a nilfs2 file system whose metadata is corrupted.\n\nThere are two flaws involved in this issue.\n\nThe first flaw is that when nilfs_get_block() locates a data block using\nbtree or direct mapping, if the disk address translation routine\nnilfs_dat_translate() fails with internal code -ENOENT due to DAT metadata\ncorruption, it can be passed back to nilfs_get_block().  This causes\nnilfs_get_block() to misidentify an existing block as non-existent,\ncausing both data block lookup and insertion to fail inconsistently.\n\nThe second flaw is that nilfs_get_block() returns a successful status in\nthis inconsistent state.  This causes the caller __block_write_begin_int()\nor others to request a read even though the buffer is not mapped,\nresulting in a BUG_ON check for the BH_Mapped flag in submit_bh_wbc()\nfailing.\n\nThis fixes the first issue by changing the return value to code -EINVAL\nwhen a conversion using DAT fails with code -ENOENT, avoiding the\nconflicting condition that leads to the kernel bug described above.  Here,\ncode -EINVAL indicates that metadata corruption was detected during the\nblock lookup, which will be properly handled as a file system error and\nconverted to -EIO when passing through the nilfs2 bmap layer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26956",
          "url": "https://www.suse.com/security/cve/CVE-2024-26956"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223663 for CVE-2024-26956",
          "url": "https://bugzilla.suse.com/1223663"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26956"
    },
    {
      "cve": "CVE-2024-26960",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26960"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: swap: fix race between free_swap_and_cache() and swapoff()\n\nThere was previously a theoretical window where swapoff() could run and\nteardown a swap_info_struct while a call to free_swap_and_cache() was\nrunning in another thread.  This could cause, amongst other bad\npossibilities, swap_page_trans_huge_swapped() (called by\nfree_swap_and_cache()) to access the freed memory for swap_map.\n\nThis is a theoretical problem and I haven\u0027t been able to provoke it from a\ntest case.  But there has been agreement based on code review that this is\npossible (see link below).\n\nFix it by using get_swap_device()/put_swap_device(), which will stall\nswapoff().  There was an extra check in _swap_info_get() to confirm that\nthe swap entry was not free.  This isn\u0027t present in get_swap_device()\nbecause it doesn\u0027t make sense in general due to the race between getting\nthe reference and swapoff.  So I\u0027ve added an equivalent check directly in\nfree_swap_and_cache().\n\nDetails of how to provoke one possible issue (thanks to David Hildenbrand\nfor deriving this):\n\n--8\u003c-----\n\n__swap_entry_free() might be the last user and result in\n\"count == SWAP_HAS_CACHE\".\n\nswapoff-\u003etry_to_unuse() will stop as soon as soon as si-\u003einuse_pages==0.\n\nSo the question is: could someone reclaim the folio and turn\nsi-\u003einuse_pages==0, before we completed swap_page_trans_huge_swapped().\n\nImagine the following: 2 MiB folio in the swapcache. Only 2 subpages are\nstill references by swap entries.\n\nProcess 1 still references subpage 0 via swap entry.\nProcess 2 still references subpage 1 via swap entry.\n\nProcess 1 quits. Calls free_swap_and_cache().\n-\u003e count == SWAP_HAS_CACHE\n[then, preempted in the hypervisor etc.]\n\nProcess 2 quits. Calls free_swap_and_cache().\n-\u003e count == SWAP_HAS_CACHE\n\nProcess 2 goes ahead, passes swap_page_trans_huge_swapped(), and calls\n__try_to_reclaim_swap().\n\n__try_to_reclaim_swap()-\u003efolio_free_swap()-\u003edelete_from_swap_cache()-\u003e\nput_swap_folio()-\u003efree_swap_slot()-\u003eswapcache_free_entries()-\u003e\nswap_entry_free()-\u003eswap_range_free()-\u003e\n...\nWRITE_ONCE(si-\u003einuse_pages, si-\u003einuse_pages - nr_entries);\n\nWhat stops swapoff to succeed after process 2 reclaimed the swap cache\nbut before process1 finished its call to swap_page_trans_huge_swapped()?\n\n--8\u003c-----",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26960",
          "url": "https://www.suse.com/security/cve/CVE-2024-26960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223655 for CVE-2024-26960",
          "url": "https://bugzilla.suse.com/1223655"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26960"
    },
    {
      "cve": "CVE-2024-26965",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26965"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: qcom: mmcc-msm8974: fix terminating of frequency table arrays\n\nThe frequency table arrays are supposed to be terminated with an\nempty element. Add such entry to the end of the arrays where it\nis missing in order to avoid possible out-of-bound access when\nthe table is traversed by functions like qcom_find_freq() or\nqcom_find_freq_floor().\n\nOnly compile tested.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26965",
          "url": "https://www.suse.com/security/cve/CVE-2024-26965"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223648 for CVE-2024-26965",
          "url": "https://bugzilla.suse.com/1223648"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26965"
    },
    {
      "cve": "CVE-2024-26966",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26966"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: qcom: mmcc-apq8084: fix terminating of frequency table arrays\n\nThe frequency table arrays are supposed to be terminated with an\nempty element. Add such entry to the end of the arrays where it\nis missing in order to avoid possible out-of-bound access when\nthe table is traversed by functions like qcom_find_freq() or\nqcom_find_freq_floor().\n\nOnly compile tested.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26966",
          "url": "https://www.suse.com/security/cve/CVE-2024-26966"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223646 for CVE-2024-26966",
          "url": "https://bugzilla.suse.com/1223646"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26966"
    },
    {
      "cve": "CVE-2024-26969",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26969"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: qcom: gcc-ipq8074: fix terminating of frequency table arrays\n\nThe frequency table arrays are supposed to be terminated with an\nempty element. Add such entry to the end of the arrays where it\nis missing in order to avoid possible out-of-bound access when\nthe table is traversed by functions like qcom_find_freq() or\nqcom_find_freq_floor().\n\nOnly compile tested.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26969",
          "url": "https://www.suse.com/security/cve/CVE-2024-26969"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223645 for CVE-2024-26969",
          "url": "https://bugzilla.suse.com/1223645"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26969"
    },
    {
      "cve": "CVE-2024-26970",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26970"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: qcom: gcc-ipq6018: fix terminating of frequency table arrays\n\nThe frequency table arrays are supposed to be terminated with an\nempty element. Add such entry to the end of the arrays where it\nis missing in order to avoid possible out-of-bound access when\nthe table is traversed by functions like qcom_find_freq() or\nqcom_find_freq_floor().\n\nOnly compile tested.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26970",
          "url": "https://www.suse.com/security/cve/CVE-2024-26970"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223644 for CVE-2024-26970",
          "url": "https://bugzilla.suse.com/1223644"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26970"
    },
    {
      "cve": "CVE-2024-26972",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26972"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26972",
          "url": "https://www.suse.com/security/cve/CVE-2024-26972"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223643 for CVE-2024-26972",
          "url": "https://bugzilla.suse.com/1223643"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26972"
    },
    {
      "cve": "CVE-2024-26979",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26979"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26979",
          "url": "https://www.suse.com/security/cve/CVE-2024-26979"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223628 for CVE-2024-26979",
          "url": "https://bugzilla.suse.com/1223628"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26979"
    },
    {
      "cve": "CVE-2024-26981",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26981"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix OOB in nilfs_set_de_type\n\nThe size of the nilfs_type_by_mode array in the fs/nilfs2/dir.c file is\ndefined as \"S_IFMT \u003e\u003e S_SHIFT\", but the nilfs_set_de_type() function,\nwhich uses this array, specifies the index to read from the array in the\nsame way as \"(mode \u0026 S_IFMT) \u003e\u003e S_SHIFT\".\n\nstatic void nilfs_set_de_type(struct nilfs_dir_entry *de, struct inode\n *inode)\n{\n\tumode_t mode = inode-\u003ei_mode;\n\n\tde-\u003efile_type = nilfs_type_by_mode[(mode \u0026 S_IFMT)\u003e\u003eS_SHIFT]; // oob\n}\n\nHowever, when the index is determined this way, an out-of-bounds (OOB)\nerror occurs by referring to an index that is 1 larger than the array size\nwhen the condition \"mode \u0026 S_IFMT == S_IFMT\" is satisfied.  Therefore, a\npatch to resize the nilfs_type_by_mode array should be applied to prevent\nOOB errors.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26981",
          "url": "https://www.suse.com/security/cve/CVE-2024-26981"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223668 for CVE-2024-26981",
          "url": "https://bugzilla.suse.com/1223668"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26981"
    },
    {
      "cve": "CVE-2024-26982",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26982"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: check the inode number is not the invalid value of zero\n\nSyskiller has produced an out of bounds access in fill_meta_index().\n\nThat out of bounds access is ultimately caused because the inode\nhas an inode number with the invalid value of zero, which was not checked.\n\nThe reason this causes the out of bounds access is due to following\nsequence of events:\n\n1. Fill_meta_index() is called to allocate (via empty_meta_index())\n   and fill a metadata index.  It however suffers a data read error\n   and aborts, invalidating the newly returned empty metadata index.\n   It does this by setting the inode number of the index to zero,\n   which means unused (zero is not a valid inode number).\n\n2. When fill_meta_index() is subsequently called again on another\n   read operation, locate_meta_index() returns the previous index\n   because it matches the inode number of 0.  Because this index\n   has been returned it is expected to have been filled, and because\n   it hasn\u0027t been, an out of bounds access is performed.\n\nThis patch adds a sanity check which checks that the inode number\nis not zero when the inode is created and returns -EINVAL if it is.\n\n[phillip@squashfs.org.uk: whitespace fix]",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26982",
          "url": "https://www.suse.com/security/cve/CVE-2024-26982"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223634 for CVE-2024-26982",
          "url": "https://bugzilla.suse.com/1223634"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26982"
    },
    {
      "cve": "CVE-2024-26993",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-26993"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: sysfs: Fix reference leak in sysfs_break_active_protection()\n\nThe sysfs_break_active_protection() routine has an obvious reference\nleak in its error path.  If the call to kernfs_find_and_get() fails then\nkn will be NULL, so the companion sysfs_unbreak_active_protection()\nroutine won\u0027t get called (and would only cause an access violation by\ntrying to dereference kn-\u003eparent if it was called).  As a result, the\nreference to kobj acquired at the start of the function will never be\nreleased.\n\nFix the leak by adding an explicit kobject_put() call when kn is NULL.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-26993",
          "url": "https://www.suse.com/security/cve/CVE-2024-26993"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223693 for CVE-2024-26993",
          "url": "https://bugzilla.suse.com/1223693"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-26993"
    },
    {
      "cve": "CVE-2024-27013",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27013"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ntun: limit printing rate when illegal packet received by tun dev\n\nvhost_worker will call tun call backs to receive packets. If too many\nillegal packets arrives, tun_do_read will keep dumping packet contents.\nWhen console is enabled, it will costs much more cpu time to dump\npacket and soft lockup will be detected.\n\nnet_ratelimit mechanism can be used to limit the dumping rate.\n\nPID: 33036    TASK: ffff949da6f20000  CPU: 23   COMMAND: \"vhost-32980\"\n #0 [fffffe00003fce50] crash_nmi_callback at ffffffff89249253\n #1 [fffffe00003fce58] nmi_handle at ffffffff89225fa3\n #2 [fffffe00003fceb0] default_do_nmi at ffffffff8922642e\n #3 [fffffe00003fced0] do_nmi at ffffffff8922660d\n #4 [fffffe00003fcef0] end_repeat_nmi at ffffffff89c01663\n    [exception RIP: io_serial_in+20]\n    RIP: ffffffff89792594  RSP: ffffa655314979e8  RFLAGS: 00000002\n    RAX: ffffffff89792500  RBX: ffffffff8af428a0  RCX: 0000000000000000\n    RDX: 00000000000003fd  RSI: 0000000000000005  RDI: ffffffff8af428a0\n    RBP: 0000000000002710   R8: 0000000000000004   R9: 000000000000000f\n    R10: 0000000000000000  R11: ffffffff8acbf64f  R12: 0000000000000020\n    R13: ffffffff8acbf698  R14: 0000000000000058  R15: 0000000000000000\n    ORIG_RAX: ffffffffffffffff  CS: 0010  SS: 0018\n #5 [ffffa655314979e8] io_serial_in at ffffffff89792594\n #6 [ffffa655314979e8] wait_for_xmitr at ffffffff89793470\n #7 [ffffa65531497a08] serial8250_console_putchar at ffffffff897934f6\n #8 [ffffa65531497a20] uart_console_write at ffffffff8978b605\n #9 [ffffa65531497a48] serial8250_console_write at ffffffff89796558\n #10 [ffffa65531497ac8] console_unlock at ffffffff89316124\n #11 [ffffa65531497b10] vprintk_emit at ffffffff89317c07\n #12 [ffffa65531497b68] printk at ffffffff89318306\n #13 [ffffa65531497bc8] print_hex_dump at ffffffff89650765\n #14 [ffffa65531497ca8] tun_do_read at ffffffffc0b06c27 [tun]\n #15 [ffffa65531497d38] tun_recvmsg at ffffffffc0b06e34 [tun]\n #16 [ffffa65531497d68] handle_rx at ffffffffc0c5d682 [vhost_net]\n #17 [ffffa65531497ed0] vhost_worker at ffffffffc0c644dc [vhost]\n #18 [ffffa65531497f10] kthread at ffffffff892d2e72\n #19 [ffffa65531497f50] ret_from_fork at ffffffff89c0022f",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27013",
          "url": "https://www.suse.com/security/cve/CVE-2024-27013"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223745 for CVE-2024-27013",
          "url": "https://bugzilla.suse.com/1223745"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27013"
    },
    {
      "cve": "CVE-2024-27014",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27014"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Prevent deadlock while disabling aRFS\n\nWhen disabling aRFS under the `priv-\u003estate_lock`, any scheduled\naRFS works are canceled using the `cancel_work_sync` function,\nwhich waits for the work to end if it has already started.\nHowever, while waiting for the work handler, the handler will\ntry to acquire the `state_lock` which is already acquired.\n\nThe worker acquires the lock to delete the rules if the state\nis down, which is not the worker\u0027s responsibility since\ndisabling aRFS deletes the rules.\n\nAdd an aRFS state variable, which indicates whether the aRFS is\nenabled and prevent adding rules when the aRFS is disabled.\n\nKernel log:\n\n======================================================\nWARNING: possible circular locking dependency detected\n6.7.0-rc4_net_next_mlx5_5483eb2 #1 Tainted: G          I\n------------------------------------------------------\nethtool/386089 is trying to acquire lock:\nffff88810f21ce68 ((work_completion)(\u0026rule-\u003earfs_work)){+.+.}-{0:0}, at: __flush_work+0x74/0x4e0\n\nbut task is already holding lock:\nffff8884a1808cc0 (\u0026priv-\u003estate_lock){+.+.}-{3:3}, at: mlx5e_ethtool_set_channels+0x53/0x200 [mlx5_core]\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #1 (\u0026priv-\u003estate_lock){+.+.}-{3:3}:\n       __mutex_lock+0x80/0xc90\n       arfs_handle_work+0x4b/0x3b0 [mlx5_core]\n       process_one_work+0x1dc/0x4a0\n       worker_thread+0x1bf/0x3c0\n       kthread+0xd7/0x100\n       ret_from_fork+0x2d/0x50\n       ret_from_fork_asm+0x11/0x20\n\n-\u003e #0 ((work_completion)(\u0026rule-\u003earfs_work)){+.+.}-{0:0}:\n       __lock_acquire+0x17b4/0x2c80\n       lock_acquire+0xd0/0x2b0\n       __flush_work+0x7a/0x4e0\n       __cancel_work_timer+0x131/0x1c0\n       arfs_del_rules+0x143/0x1e0 [mlx5_core]\n       mlx5e_arfs_disable+0x1b/0x30 [mlx5_core]\n       mlx5e_ethtool_set_channels+0xcb/0x200 [mlx5_core]\n       ethnl_set_channels+0x28f/0x3b0\n       ethnl_default_set_doit+0xec/0x240\n       genl_family_rcv_msg_doit+0xd0/0x120\n       genl_rcv_msg+0x188/0x2c0\n       netlink_rcv_skb+0x54/0x100\n       genl_rcv+0x24/0x40\n       netlink_unicast+0x1a1/0x270\n       netlink_sendmsg+0x214/0x460\n       __sock_sendmsg+0x38/0x60\n       __sys_sendto+0x113/0x170\n       __x64_sys_sendto+0x20/0x30\n       do_syscall_64+0x40/0xe0\n       entry_SYSCALL_64_after_hwframe+0x46/0x4e\n\nother info that might help us debug this:\n\n Possible unsafe locking scenario:\n\n       CPU0                    CPU1\n       ----                    ----\n  lock(\u0026priv-\u003estate_lock);\n                               lock((work_completion)(\u0026rule-\u003earfs_work));\n                               lock(\u0026priv-\u003estate_lock);\n  lock((work_completion)(\u0026rule-\u003earfs_work));\n\n *** DEADLOCK ***\n\n3 locks held by ethtool/386089:\n #0: ffffffff82ea7210 (cb_lock){++++}-{3:3}, at: genl_rcv+0x15/0x40\n #1: ffffffff82e94c88 (rtnl_mutex){+.+.}-{3:3}, at: ethnl_default_set_doit+0xd3/0x240\n #2: ffff8884a1808cc0 (\u0026priv-\u003estate_lock){+.+.}-{3:3}, at: mlx5e_ethtool_set_channels+0x53/0x200 [mlx5_core]\n\nstack backtrace:\nCPU: 15 PID: 386089 Comm: ethtool Tainted: G          I        6.7.0-rc4_net_next_mlx5_5483eb2 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x60/0xa0\n check_noncircular+0x144/0x160\n __lock_acquire+0x17b4/0x2c80\n lock_acquire+0xd0/0x2b0\n ? __flush_work+0x74/0x4e0\n ? save_trace+0x3e/0x360\n ? __flush_work+0x74/0x4e0\n __flush_work+0x7a/0x4e0\n ? __flush_work+0x74/0x4e0\n ? __lock_acquire+0xa78/0x2c80\n ? lock_acquire+0xd0/0x2b0\n ? mark_held_locks+0x49/0x70\n __cancel_work_timer+0x131/0x1c0\n ? mark_held_locks+0x49/0x70\n arfs_del_rules+0x143/0x1e0 [mlx5_core]\n mlx5e_arfs_disable+0x1b/0x30 [mlx5_core]\n mlx5e_ethtool_set_channels+0xcb/0x200 [mlx5_core]\n ethnl_set_channels+0x28f/0x3b0\n ethnl_default_set_doit+0xec/0x240\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x188/0x2c0\n ? ethn\n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27014",
          "url": "https://www.suse.com/security/cve/CVE-2024-27014"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223735 for CVE-2024-27014",
          "url": "https://bugzilla.suse.com/1223735"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27014"
    },
    {
      "cve": "CVE-2024-27030",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27030"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: Use separate handlers for interrupts\n\nFor PF to AF interrupt vector and VF to AF vector same\ninterrupt handler is registered which is causing race condition.\nWhen two interrupts are raised to two CPUs at same time\nthen two cores serve same event corrupting the data.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27030",
          "url": "https://www.suse.com/security/cve/CVE-2024-27030"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223790 for CVE-2024-27030",
          "url": "https://bugzilla.suse.com/1223790"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27030"
    },
    {
      "cve": "CVE-2024-27038",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27038"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: Fix clk_core_get NULL dereference\n\nIt is possible for clk_core_get to dereference a NULL in the following\nsequence:\n\nclk_core_get()\n    of_clk_get_hw_from_clkspec()\n        __of_clk_get_hw_from_provider()\n            __clk_get_hw()\n\n__clk_get_hw() can return NULL which is dereferenced by clk_core_get() at\nhw-\u003ecore.\n\nPrior to commit dde4eff47c82 (\"clk: Look for parents with clkdev based\nclk_lookups\") the check IS_ERR_OR_NULL() was performed which would have\ncaught the NULL.\n\nReading the description of this function it talks about returning NULL but\nthat cannot be so at the moment.\n\nUpdate the function to check for hw before dereferencing it and return NULL\nif hw is NULL.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27038",
          "url": "https://www.suse.com/security/cve/CVE-2024-27038"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223816 for CVE-2024-27038",
          "url": "https://bugzilla.suse.com/1223816"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27038"
    },
    {
      "cve": "CVE-2024-27039",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27039"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: hisilicon: hi3559a: Fix an erroneous devm_kfree()\n\n\u0027p_clk\u0027 is an array allocated just before the for loop for all clk that\nneed to be registered.\nIt is incremented at each loop iteration.\n\nIf a clk_register() call fails, \u0027p_clk\u0027 may point to something different\nfrom what should be freed.\n\nThe best we can do, is to avoid this wrong release of memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27039",
          "url": "https://www.suse.com/security/cve/CVE-2024-27039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223821 for CVE-2024-27039",
          "url": "https://bugzilla.suse.com/1223821"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27039"
    },
    {
      "cve": "CVE-2024-27041",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27041"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix NULL checks for adev-\u003edm.dc in amdgpu_dm_fini()\n\nSince \u0027adev-\u003edm.dc\u0027 in amdgpu_dm_fini() might turn out to be NULL\nbefore the call to dc_enable_dmub_notifications(), check\nbeforehand to ensure there will not be a possible NULL-ptr-deref\nthere.\n\nAlso, since commit 1e88eb1b2c25 (\"drm/amd/display: Drop\nCONFIG_DRM_AMD_DC_HDCP\") there are two separate checks for NULL in\n\u0027adev-\u003edm.dc\u0027 before dc_deinit_callbacks() and dc_dmub_srv_destroy().\nClean up by combining them all under one \u0027if\u0027.\n\nFound by Linux Verification Center (linuxtesting.org) with static\nanalysis tool SVACE.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27041",
          "url": "https://www.suse.com/security/cve/CVE-2024-27041"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223714 for CVE-2024-27041",
          "url": "https://bugzilla.suse.com/1223714"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27041"
    },
    {
      "cve": "CVE-2024-27042",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27042"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix potential out-of-bounds access in \u0027amdgpu_discovery_reg_base_init()\u0027\n\nThe issue arises when the array \u0027adev-\u003evcn.vcn_config\u0027 is accessed\nbefore checking if the index \u0027adev-\u003evcn.num_vcn_inst\u0027 is within the\nbounds of the array.\n\nThe fix involves moving the bounds check before the array access. This\nensures that \u0027adev-\u003evcn.num_vcn_inst\u0027 is within the bounds of the array\nbefore it is used as an index.\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/amdgpu_discovery.c:1289 amdgpu_discovery_reg_base_init() error: testing array offset \u0027adev-\u003evcn.num_vcn_inst\u0027 after use.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27042",
          "url": "https://www.suse.com/security/cve/CVE-2024-27042"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223823 for CVE-2024-27042",
          "url": "https://bugzilla.suse.com/1223823"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27042"
    },
    {
      "cve": "CVE-2024-27043",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27043"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: edia: dvbdev: fix a use-after-free\n\nIn dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed\nin several error-handling paths. However, *pdvbdev is not set to NULL\nafter dvbdev\u0027s deallocation, causing use-after-frees in many places,\nfor example, in the following call chain:\n\nbudget_register\n  |-\u003e dvb_dmxdev_init\n        |-\u003e dvb_register_device\n  |-\u003e dvb_dmxdev_release\n        |-\u003e dvb_unregister_device\n              |-\u003e dvb_remove_device\n                    |-\u003e dvb_device_put\n                          |-\u003e kref_put\n\nWhen calling dvb_unregister_device, dmxdev-\u003edvbdev (i.e. *pdvbdev in\ndvb_register_device) could point to memory that had been freed in\ndvb_register_device. Thereafter, this pointer is transferred to\nkref_put and triggering a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27043",
          "url": "https://www.suse.com/security/cve/CVE-2024-27043"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218562 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1218562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223824 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1223824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223825 for CVE-2024-27043",
          "url": "https://bugzilla.suse.com/1223825"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "important"
        }
      ],
      "title": "CVE-2024-27043"
    },
    {
      "cve": "CVE-2024-27046",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27046"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfp: flower: handle acti_netdevs allocation failure\n\nThe kmalloc_array() in nfp_fl_lag_do_work() will return null, if\nthe physical memory has run out. As a result, if we dereference\nthe acti_netdevs, the null pointer dereference bugs will happen.\n\nThis patch adds a check to judge whether allocation failure occurs.\nIf it happens, the delayed work will be rescheduled and try again.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27046",
          "url": "https://www.suse.com/security/cve/CVE-2024-27046"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223827 for CVE-2024-27046",
          "url": "https://bugzilla.suse.com/1223827"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27046"
    },
    {
      "cve": "CVE-2024-27056",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27056"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: ensure offloading TID queue exists\n\nThe resume code path assumes that the TX queue for the offloading TID\nhas been configured. At resume time it then tries to sync the write\npointer as it may have been updated by the firmware.\n\nIn the unusual event that no packets have been send on TID 0, the queue\nwill not have been allocated and this causes a crash. Fix this by\nensuring the queue exist at suspend time.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27056",
          "url": "https://www.suse.com/security/cve/CVE-2024-27056"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223822 for CVE-2024-27056",
          "url": "https://bugzilla.suse.com/1223822"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27056"
    },
    {
      "cve": "CVE-2024-27059",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27059"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: usb-storage: Prevent divide-by-0 error in isd200_ata_command\n\nThe isd200 sub-driver in usb-storage uses the HEADS and SECTORS values\nin the ATA ID information to calculate cylinder and head values when\ncreating a CDB for READ or WRITE commands.  The calculation involves\ndivision and modulus operations, which will cause a crash if either of\nthese values is 0.  While this never happens with a genuine device, it\ncould happen with a flawed or subversive emulation, as reported by the\nsyzbot fuzzer.\n\nProtect against this possibility by refusing to bind to the device if\neither the ATA_ID_HEADS or ATA_ID_SECTORS value in the device\u0027s ID\ninformation is 0.  This requires isd200_Initialization() to return a\nnegative error code when initialization fails; currently it always\nreturns 0 (even when there is an error).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27059",
          "url": "https://www.suse.com/security/cve/CVE-2024-27059"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223738 for CVE-2024-27059",
          "url": "https://bugzilla.suse.com/1223738"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27059"
    },
    {
      "cve": "CVE-2024-27062",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27062"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau: lock the client object tree.\n\nIt appears the client object tree has no locking unless I\u0027ve missed\nsomething else. Fix races around adding/removing client objects,\nmostly vram bar mappings.\n\n 4562.099306] general protection fault, probably for non-canonical address 0x6677ed422bceb80c: 0000 [#1] PREEMPT SMP PTI\n[ 4562.099314] CPU: 2 PID: 23171 Comm: deqp-vk Not tainted 6.8.0-rc6+ #27\n[ 4562.099324] Hardware name: Gigabyte Technology Co., Ltd. Z390 I AORUS PRO WIFI/Z390 I AORUS PRO WIFI-CF, BIOS F8 11/05/2021\n[ 4562.099330] RIP: 0010:nvkm_object_search+0x1d/0x70 [nouveau]\n[ 4562.099503] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 0f 1f 44 00 00 48 89 f8 48 85 f6 74 39 48 8b 87 a0 00 00 00 48 85 c0 74 12 \u003c48\u003e 8b 48 f8 48 39 ce 73 15 48 8b 40 10 48 85 c0 75 ee 48 c7 c0 fe\n[ 4562.099506] RSP: 0000:ffffa94cc420bbf8 EFLAGS: 00010206\n[ 4562.099512] RAX: 6677ed422bceb814 RBX: ffff98108791f400 RCX: ffff9810f26b8f58\n[ 4562.099517] RDX: 0000000000000000 RSI: ffff9810f26b9158 RDI: ffff98108791f400\n[ 4562.099519] RBP: ffff9810f26b9158 R08: 0000000000000000 R09: 0000000000000000\n[ 4562.099521] R10: ffffa94cc420bc48 R11: 0000000000000001 R12: ffff9810f02a7cc0\n[ 4562.099526] R13: 0000000000000000 R14: 00000000000000ff R15: 0000000000000007\n[ 4562.099528] FS:  00007f629c5017c0(0000) GS:ffff98142c700000(0000) knlGS:0000000000000000\n[ 4562.099534] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4562.099536] CR2: 00007f629a882000 CR3: 000000017019e004 CR4: 00000000003706f0\n[ 4562.099541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4562.099542] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4562.099544] Call Trace:\n[ 4562.099555]  \u003cTASK\u003e\n[ 4562.099573]  ? die_addr+0x36/0x90\n[ 4562.099583]  ? exc_general_protection+0x246/0x4a0\n[ 4562.099593]  ? asm_exc_general_protection+0x26/0x30\n[ 4562.099600]  ? nvkm_object_search+0x1d/0x70 [nouveau]\n[ 4562.099730]  nvkm_ioctl+0xa1/0x250 [nouveau]\n[ 4562.099861]  nvif_object_map_handle+0xc8/0x180 [nouveau]\n[ 4562.099986]  nouveau_ttm_io_mem_reserve+0x122/0x270 [nouveau]\n[ 4562.100156]  ? dma_resv_test_signaled+0x26/0xb0\n[ 4562.100163]  ttm_bo_vm_fault_reserved+0x97/0x3c0 [ttm]\n[ 4562.100182]  ? __mutex_unlock_slowpath+0x2a/0x270\n[ 4562.100189]  nouveau_ttm_fault+0x69/0xb0 [nouveau]\n[ 4562.100356]  __do_fault+0x32/0x150\n[ 4562.100362]  do_fault+0x7c/0x560\n[ 4562.100369]  __handle_mm_fault+0x800/0xc10\n[ 4562.100382]  handle_mm_fault+0x17c/0x3e0\n[ 4562.100388]  do_user_addr_fault+0x208/0x860\n[ 4562.100395]  exc_page_fault+0x7f/0x200\n[ 4562.100402]  asm_exc_page_fault+0x26/0x30\n[ 4562.100412] RIP: 0033:0x9b9870\n[ 4562.100419] Code: 85 a8 f7 ff ff 8b 8d 80 f7 ff ff 89 08 e9 18 f2 ff ff 0f 1f 84 00 00 00 00 00 44 89 32 e9 90 fa ff ff 0f 1f 84 00 00 00 00 00 \u003c44\u003e 89 32 e9 f8 f1 ff ff 0f 1f 84 00 00 00 00 00 66 44 89 32 e9 e7\n[ 4562.100422] RSP: 002b:00007fff9ba2dc70 EFLAGS: 00010246\n[ 4562.100426] RAX: 0000000000000004 RBX: 000000000dd65e10 RCX: 000000fff0000000\n[ 4562.100428] RDX: 00007f629a882000 RSI: 00007f629a882000 RDI: 0000000000000066\n[ 4562.100432] RBP: 00007fff9ba2e570 R08: 0000000000000000 R09: 0000000123ddf000\n[ 4562.100434] R10: 0000000000000001 R11: 0000000000000246 R12: 000000007fffffff\n[ 4562.100436] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n[ 4562.100446]  \u003c/TASK\u003e\n[ 4562.100448] Modules linked in: nf_conntrack_netbios_ns nf_conntrack_broadcast nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables libcrc32c nfnetlink cmac bnep sunrpc iwlmvm intel_rapl_msr intel_rapl_common snd_sof_pci_intel_cnl x86_pkg_temp_thermal intel_powerclamp snd_sof_intel_hda_common mac80211 coretemp snd_soc_acpi_intel_match kvm_intel snd_soc_acpi snd_soc_hdac_hda snd_sof_pci snd_sof_xtensa_dsp snd_sof_intel_hda_mlink \n---truncated---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27062",
          "url": "https://www.suse.com/security/cve/CVE-2024-27062"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223834 for CVE-2024-27062",
          "url": "https://bugzilla.suse.com/1223834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27062"
    },
    {
      "cve": "CVE-2024-27389",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2024-27389"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore: inode: Only d_invalidate() is needed\n\nUnloading a modular pstore backend with records in pstorefs would\ntrigger the dput() double-drop warning:\n\n  WARNING: CPU: 0 PID: 2569 at fs/dcache.c:762 dput.part.0+0x3f3/0x410\n\nUsing the combo of d_drop()/dput() (as mentioned in\nDocumentation/filesystems/vfs.rst) isn\u0027t the right approach here, and\nleads to the reference counting problem seen above. Use d_invalidate()\nand update the code to not bother checking for error codes that can\nnever happen.\n\n---",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
          "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2024-27389",
          "url": "https://www.suse.com/security/cve/CVE-2024-27389"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1223705 for CVE-2024-27389",
          "url": "https://bugzilla.suse.com/1223705"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "SUSE Linux Enterprise Module for Public Cloud 15 SP5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:cluster-md-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:dlm-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:gfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-extra-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-livepatch-devel-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-azure-optional-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-azure-vdso-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kernel-devel-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-source-azure-5.14.21-150500.33.51.1.noarch",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kernel-syms-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:kselftests-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:ocfs2-kmp-azure-5.14.21-150500.33.51.1.x86_64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.aarch64",
            "openSUSE Leap 15.5:reiserfs-kmp-azure-5.14.21-150500.33.51.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-05-14T14:29:53Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2024-27389"
    }
  ]
}

CVE-2024-26927 (GCVE-0-2024-26927)

Vulnerability from cvelistv5

Published

2024-04-28 11:27

Modified

2025-05-04 08:59

Severity ?

8.4 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Add some bounds checking to firmware data Smatch complains about "head->full_size - head->header_size" can underflow. To some extent, we're always going to have to trust the firmware a bit. However, it's easy enough to add a check for negatives, and let's add a upper bounds check as well.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d133d67e7e724102d1e53009c4f88afaaf3e167c
	https://git.kernel.org/stable/c/ced7df8b3c5c4751244cad79011e86cf1f809153
	https://git.kernel.org/stable/c/044e220667157fb9d59320341badec59cf45ba48
	https://git.kernel.org/stable/c/9eeb8e1231f6450c574c1db979122e171a1813ab
	https://git.kernel.org/stable/c/98f681b0f84cfc3a1d83287b77697679e0398306

Impacted products

Vendor

Product

Version

►

Linux

Version: d2458baa799fff377660d86323dd20a3f4deecb4
Version: d2458baa799fff377660d86323dd20a3f4deecb4
Version: d2458baa799fff377660d86323dd20a3f4deecb4
Version: d2458baa799fff377660d86323dd20a3f4deecb4
Version: d2458baa799fff377660d86323dd20a3f4deecb4

Linux

Version: 5.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "5.19"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "d2458baa799f"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 8.4,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26927",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-30T16:50:15.539031Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-120",
                "description": "CWE-120 Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-02-05T21:23:02.468Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.489Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d133d67e7e724102d1e53009c4f88afaaf3e167c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ced7df8b3c5c4751244cad79011e86cf1f809153"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/044e220667157fb9d59320341badec59cf45ba48"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9eeb8e1231f6450c574c1db979122e171a1813ab"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/98f681b0f84cfc3a1d83287b77697679e0398306"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "sound/soc/sof/ipc3-loader.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d133d67e7e724102d1e53009c4f88afaaf3e167c",
              "status": "affected",
              "version": "d2458baa799fff377660d86323dd20a3f4deecb4",
              "versionType": "git"
            },
            {
              "lessThan": "ced7df8b3c5c4751244cad79011e86cf1f809153",
              "status": "affected",
              "version": "d2458baa799fff377660d86323dd20a3f4deecb4",
              "versionType": "git"
            },
            {
              "lessThan": "044e220667157fb9d59320341badec59cf45ba48",
              "status": "affected",
              "version": "d2458baa799fff377660d86323dd20a3f4deecb4",
              "versionType": "git"
            },
            {
              "lessThan": "9eeb8e1231f6450c574c1db979122e171a1813ab",
              "status": "affected",
              "version": "d2458baa799fff377660d86323dd20a3f4deecb4",
              "versionType": "git"
            },
            {
              "lessThan": "98f681b0f84cfc3a1d83287b77697679e0398306",
              "status": "affected",
              "version": "d2458baa799fff377660d86323dd20a3f4deecb4",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "sound/soc/sof/ipc3-loader.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.19"
            },
            {
              "lessThan": "5.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nASoC: SOF: Add some bounds checking to firmware data\n\nSmatch complains about \"head-\u003efull_size - head-\u003eheader_size\" can\nunderflow.  To some extent, we\u0027re always going to have to trust the\nfirmware a bit.  However, it\u0027s easy enough to add a check for negatives,\nand let\u0027s add a upper bounds check as well."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:59:54.041Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d133d67e7e724102d1e53009c4f88afaaf3e167c"
        },
        {
          "url": "https://git.kernel.org/stable/c/ced7df8b3c5c4751244cad79011e86cf1f809153"
        },
        {
          "url": "https://git.kernel.org/stable/c/044e220667157fb9d59320341badec59cf45ba48"
        },
        {
          "url": "https://git.kernel.org/stable/c/9eeb8e1231f6450c574c1db979122e171a1813ab"
        },
        {
          "url": "https://git.kernel.org/stable/c/98f681b0f84cfc3a1d83287b77697679e0398306"
        }
      ],
      "title": "ASoC: SOF: Add some bounds checking to firmware data",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26927",
    "datePublished": "2024-04-28T11:27:56.756Z",
    "dateReserved": "2024-02-19T14:20:24.195Z",
    "dateUpdated": "2025-05-04T08:59:54.041Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26764 (GCVE-0-2024-26764)

Vulnerability from cvelistv5

Published

2024-04-03 17:00

Modified

2025-05-04 08:55

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio If kiocb_set_cancel_fn() is called for I/O submitted via io_uring, the following kernel warning appears: WARNING: CPU: 3 PID: 368 at fs/aio.c:598 kiocb_set_cancel_fn+0x9c/0xa8 Call trace: kiocb_set_cancel_fn+0x9c/0xa8 ffs_epfile_read_iter+0x144/0x1d0 io_read+0x19c/0x498 io_issue_sqe+0x118/0x27c io_submit_sqes+0x25c/0x5fc __arm64_sys_io_uring_enter+0x104/0xab0 invoke_syscall+0x58/0x11c el0_svc_common+0xb4/0xf4 do_el0_svc+0x2c/0xb0 el0_svc+0x2c/0xa4 el0t_64_sync_handler+0x68/0xb4 el0t_64_sync+0x1a4/0x1a8 Fix this by setting the IOCB_AIO_RW flag for read and write I/O that is submitted by libaio.

References

►

URL

Tags

	https://git.kernel.org/stable/c/337b543e274fe7a8f47df3c8293cc6686ffa620f
	https://git.kernel.org/stable/c/b4eea7a05ee0ab5ab0514421e6ba8c5d249cf942
	https://git.kernel.org/stable/c/ea1cd64d59f22d6d13f367d62ec6e27b9344695f
	https://git.kernel.org/stable/c/d7b6fa97ec894edd02f64b83e5e72e1aa352f353
	https://git.kernel.org/stable/c/18f614369def2a11a52f569fe0f910b199d13487
	https://git.kernel.org/stable/c/e7e23fc5d5fe422827c9a43ecb579448f73876c7
	https://git.kernel.org/stable/c/1dc7d74fe456944a9b1c57bd776280249f441ac6
	https://git.kernel.org/stable/c/b820de741ae48ccf50dd95e297889c286ff4f760

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26764",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-03T18:05:37.687851Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:01.111Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.386Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/337b543e274fe7a8f47df3c8293cc6686ffa620f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b4eea7a05ee0ab5ab0514421e6ba8c5d249cf942"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ea1cd64d59f22d6d13f367d62ec6e27b9344695f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d7b6fa97ec894edd02f64b83e5e72e1aa352f353"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/18f614369def2a11a52f569fe0f910b199d13487"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e7e23fc5d5fe422827c9a43ecb579448f73876c7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1dc7d74fe456944a9b1c57bd776280249f441ac6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b820de741ae48ccf50dd95e297889c286ff4f760"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/aio.c",
            "include/linux/fs.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "337b543e274fe7a8f47df3c8293cc6686ffa620f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b4eea7a05ee0ab5ab0514421e6ba8c5d249cf942",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ea1cd64d59f22d6d13f367d62ec6e27b9344695f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "d7b6fa97ec894edd02f64b83e5e72e1aa352f353",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "18f614369def2a11a52f569fe0f910b199d13487",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "e7e23fc5d5fe422827c9a43ecb579448f73876c7",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "1dc7d74fe456944a9b1c57bd776280249f441ac6",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b820de741ae48ccf50dd95e297889c286ff4f760",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/aio.c",
            "include/linux/fs.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.308",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.270",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.211",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.308",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.270",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.211",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio\n\nIf kiocb_set_cancel_fn() is called for I/O submitted via io_uring, the\nfollowing kernel warning appears:\n\nWARNING: CPU: 3 PID: 368 at fs/aio.c:598 kiocb_set_cancel_fn+0x9c/0xa8\nCall trace:\n kiocb_set_cancel_fn+0x9c/0xa8\n ffs_epfile_read_iter+0x144/0x1d0\n io_read+0x19c/0x498\n io_issue_sqe+0x118/0x27c\n io_submit_sqes+0x25c/0x5fc\n __arm64_sys_io_uring_enter+0x104/0xab0\n invoke_syscall+0x58/0x11c\n el0_svc_common+0xb4/0xf4\n do_el0_svc+0x2c/0xb0\n el0_svc+0x2c/0xa4\n el0t_64_sync_handler+0x68/0xb4\n el0t_64_sync+0x1a4/0x1a8\n\nFix this by setting the IOCB_AIO_RW flag for read and write I/O that is\nsubmitted by libaio."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:55:58.706Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/337b543e274fe7a8f47df3c8293cc6686ffa620f"
        },
        {
          "url": "https://git.kernel.org/stable/c/b4eea7a05ee0ab5ab0514421e6ba8c5d249cf942"
        },
        {
          "url": "https://git.kernel.org/stable/c/ea1cd64d59f22d6d13f367d62ec6e27b9344695f"
        },
        {
          "url": "https://git.kernel.org/stable/c/d7b6fa97ec894edd02f64b83e5e72e1aa352f353"
        },
        {
          "url": "https://git.kernel.org/stable/c/18f614369def2a11a52f569fe0f910b199d13487"
        },
        {
          "url": "https://git.kernel.org/stable/c/e7e23fc5d5fe422827c9a43ecb579448f73876c7"
        },
        {
          "url": "https://git.kernel.org/stable/c/1dc7d74fe456944a9b1c57bd776280249f441ac6"
        },
        {
          "url": "https://git.kernel.org/stable/c/b820de741ae48ccf50dd95e297889c286ff4f760"
        }
      ],
      "title": "fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26764",
    "datePublished": "2024-04-03T17:00:46.962Z",
    "dateReserved": "2024-02-19T14:20:24.172Z",
    "dateUpdated": "2025-05-04T08:55:58.706Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26830 (GCVE-0-2024-26830)

Vulnerability from cvelistv5

Published

2024-04-17 09:43

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: i40e: Do not allow untrusted VF to remove administratively set MAC Currently when PF administratively sets VF's MAC address and the VF is put down (VF tries to delete all MACs) then the MAC is removed from MAC filters and primary VF MAC is zeroed. Do not allow untrusted VF to remove primary MAC when it was set administratively by PF. Reproducer: 1) Create VF 2) Set VF interface up 3) Administratively set the VF's MAC 4) Put VF interface down [root@host ~]# echo 1 > /sys/class/net/enp2s0f0/device/sriov_numvfs [root@host ~]# ip link set enp2s0f0v0 up [root@host ~]# ip link set enp2s0f0 vf 0 mac fe:6c:b5:da:c7:7d [root@host ~]# ip link show enp2s0f0 23: enp2s0f0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 3c:ec:ef:b7:dd:04 brd ff:ff:ff:ff:ff:ff vf 0 link/ether fe:6c:b5:da:c7:7d brd ff:ff:ff:ff:ff:ff, spoof checking on, link-state auto, trust off [root@host ~]# ip link set enp2s0f0v0 down [root@host ~]# ip link show enp2s0f0 23: enp2s0f0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP mode DEFAULT group default qlen 1000 link/ether 3c:ec:ef:b7:dd:04 brd ff:ff:ff:ff:ff:ff vf 0 link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff, spoof checking on, link-state auto, trust off

References

►

URL

Tags

	https://git.kernel.org/stable/c/1c981792e4ccbc134b468797acdd7781959e6893
	https://git.kernel.org/stable/c/be147926140ac48022c9605d7ab0a67387e4b404
	https://git.kernel.org/stable/c/d250a81ba813a93563be68072c563aa1e346346d
	https://git.kernel.org/stable/c/73d9629e1c8c1982f13688c4d1019c3994647ccc

Impacted products

Vendor

Product

Version

►

Linux

Version: 700bbf6c1f9e4ab055528d5ab4ac5815fe4a6c1b
Version: 700bbf6c1f9e4ab055528d5ab4ac5815fe4a6c1b
Version: 700bbf6c1f9e4ab055528d5ab4ac5815fe4a6c1b
Version: 700bbf6c1f9e4ab055528d5ab4ac5815fe4a6c1b

Linux

Version: 3.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26830",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:41:40.871945Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:48:41.487Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.591Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1c981792e4ccbc134b468797acdd7781959e6893"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/be147926140ac48022c9605d7ab0a67387e4b404"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d250a81ba813a93563be68072c563aa1e346346d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/73d9629e1c8c1982f13688c4d1019c3994647ccc"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "1c981792e4ccbc134b468797acdd7781959e6893",
              "status": "affected",
              "version": "700bbf6c1f9e4ab055528d5ab4ac5815fe4a6c1b",
              "versionType": "git"
            },
            {
              "lessThan": "be147926140ac48022c9605d7ab0a67387e4b404",
              "status": "affected",
              "version": "700bbf6c1f9e4ab055528d5ab4ac5815fe4a6c1b",
              "versionType": "git"
            },
            {
              "lessThan": "d250a81ba813a93563be68072c563aa1e346346d",
              "status": "affected",
              "version": "700bbf6c1f9e4ab055528d5ab4ac5815fe4a6c1b",
              "versionType": "git"
            },
            {
              "lessThan": "73d9629e1c8c1982f13688c4d1019c3994647ccc",
              "status": "affected",
              "version": "700bbf6c1f9e4ab055528d5ab4ac5815fe4a6c1b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/i40e/i40e_virtchnl_pf.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.14"
            },
            {
              "lessThan": "3.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.79",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.79",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Do not allow untrusted VF to remove administratively set MAC\n\nCurrently when PF administratively sets VF\u0027s MAC address and the VF\nis put down (VF tries to delete all MACs) then the MAC is removed\nfrom MAC filters and primary VF MAC is zeroed.\n\nDo not allow untrusted VF to remove primary MAC when it was set\nadministratively by PF.\n\nReproducer:\n1) Create VF\n2) Set VF interface up\n3) Administratively set the VF\u0027s MAC\n4) Put VF interface down\n\n[root@host ~]# echo 1 \u003e /sys/class/net/enp2s0f0/device/sriov_numvfs\n[root@host ~]# ip link set enp2s0f0v0 up\n[root@host ~]# ip link set enp2s0f0 vf 0 mac fe:6c:b5:da:c7:7d\n[root@host ~]# ip link show enp2s0f0\n23: enp2s0f0: \u003cBROADCAST,MULTICAST,UP,LOWER_UP\u003e mtu 1500 qdisc mq state UP mode DEFAULT group default qlen 1000\n    link/ether 3c:ec:ef:b7:dd:04 brd ff:ff:ff:ff:ff:ff\n    vf 0     link/ether fe:6c:b5:da:c7:7d brd ff:ff:ff:ff:ff:ff, spoof checking on, link-state auto, trust off\n[root@host ~]# ip link set enp2s0f0v0 down\n[root@host ~]# ip link show enp2s0f0\n23: enp2s0f0: \u003cBROADCAST,MULTICAST,UP,LOWER_UP\u003e mtu 1500 qdisc mq state UP mode DEFAULT group default qlen 1000\n    link/ether 3c:ec:ef:b7:dd:04 brd ff:ff:ff:ff:ff:ff\n    vf 0     link/ether 00:00:00:00:00:00 brd ff:ff:ff:ff:ff:ff, spoof checking on, link-state auto, trust off"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:28.813Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/1c981792e4ccbc134b468797acdd7781959e6893"
        },
        {
          "url": "https://git.kernel.org/stable/c/be147926140ac48022c9605d7ab0a67387e4b404"
        },
        {
          "url": "https://git.kernel.org/stable/c/d250a81ba813a93563be68072c563aa1e346346d"
        },
        {
          "url": "https://git.kernel.org/stable/c/73d9629e1c8c1982f13688c4d1019c3994647ccc"
        }
      ],
      "title": "i40e: Do not allow untrusted VF to remove administratively set MAC",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26830",
    "datePublished": "2024-04-17T09:43:53.643Z",
    "dateReserved": "2024-02-19T14:20:24.181Z",
    "dateUpdated": "2025-05-04T08:57:28.813Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26969 (GCVE-0-2024-26969)

Vulnerability from cvelistv5

Published

2024-05-01 05:19

Modified

2025-05-04 09:01

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid possible out-of-bound access when the table is traversed by functions like qcom_find_freq() or qcom_find_freq_floor(). Only compile tested.

References

►

URL

Tags

	https://git.kernel.org/stable/c/e117c6e2d1617520f5f7d7f6f6b395f01d8b5a27
	https://git.kernel.org/stable/c/83fe1bbd9e259ad109827ccfbfc2488e0dea8e94
	https://git.kernel.org/stable/c/851cc19bdb02556fb13629b3e4fef6f2bdb038fe
	https://git.kernel.org/stable/c/9de184d4e557d550fb0b7b833b676bda4f269e4f
	https://git.kernel.org/stable/c/dd92b159c506804ac57adf3742d9728298bb1255
	https://git.kernel.org/stable/c/b6b31b4c67ea6bd9222e5b73b330554c57f2f90d
	https://git.kernel.org/stable/c/fc3ac2fcd0a7fad63eba1b359490a4b81720d0f9
	https://git.kernel.org/stable/c/be9e2752d823eca1d5af67014a1844a9176ff566
	https://git.kernel.org/stable/c/1040ef5ed95d6fd2628bad387d78a61633e09429

Impacted products

Vendor

Product

Version

►

Linux

Version: 9607f6224b3966652ce3f4e620c4694df190b64a
Version: 9607f6224b3966652ce3f4e620c4694df190b64a
Version: 9607f6224b3966652ce3f4e620c4694df190b64a
Version: 9607f6224b3966652ce3f4e620c4694df190b64a
Version: 9607f6224b3966652ce3f4e620c4694df190b64a
Version: 9607f6224b3966652ce3f4e620c4694df190b64a
Version: 9607f6224b3966652ce3f4e620c4694df190b64a
Version: 9607f6224b3966652ce3f4e620c4694df190b64a
Version: 9607f6224b3966652ce3f4e620c4694df190b64a

Linux

Version: 4.16

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.840Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e117c6e2d1617520f5f7d7f6f6b395f01d8b5a27"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/83fe1bbd9e259ad109827ccfbfc2488e0dea8e94"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/851cc19bdb02556fb13629b3e4fef6f2bdb038fe"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9de184d4e557d550fb0b7b833b676bda4f269e4f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dd92b159c506804ac57adf3742d9728298bb1255"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b6b31b4c67ea6bd9222e5b73b330554c57f2f90d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fc3ac2fcd0a7fad63eba1b359490a4b81720d0f9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/be9e2752d823eca1d5af67014a1844a9176ff566"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1040ef5ed95d6fd2628bad387d78a61633e09429"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26969",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:45:16.629888Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:44.899Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/qcom/gcc-ipq8074.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e117c6e2d1617520f5f7d7f6f6b395f01d8b5a27",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            },
            {
              "lessThan": "83fe1bbd9e259ad109827ccfbfc2488e0dea8e94",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            },
            {
              "lessThan": "851cc19bdb02556fb13629b3e4fef6f2bdb038fe",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            },
            {
              "lessThan": "9de184d4e557d550fb0b7b833b676bda4f269e4f",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            },
            {
              "lessThan": "dd92b159c506804ac57adf3742d9728298bb1255",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            },
            {
              "lessThan": "b6b31b4c67ea6bd9222e5b73b330554c57f2f90d",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            },
            {
              "lessThan": "fc3ac2fcd0a7fad63eba1b359490a4b81720d0f9",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            },
            {
              "lessThan": "be9e2752d823eca1d5af67014a1844a9176ff566",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            },
            {
              "lessThan": "1040ef5ed95d6fd2628bad387d78a61633e09429",
              "status": "affected",
              "version": "9607f6224b3966652ce3f4e620c4694df190b64a",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/qcom/gcc-ipq8074.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.16"
            },
            {
              "lessThan": "4.16",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.312",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.312",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: qcom: gcc-ipq8074: fix terminating of frequency table arrays\n\nThe frequency table arrays are supposed to be terminated with an\nempty element. Add such entry to the end of the arrays where it\nis missing in order to avoid possible out-of-bound access when\nthe table is traversed by functions like qcom_find_freq() or\nqcom_find_freq_floor().\n\nOnly compile tested."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:01:05.215Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e117c6e2d1617520f5f7d7f6f6b395f01d8b5a27"
        },
        {
          "url": "https://git.kernel.org/stable/c/83fe1bbd9e259ad109827ccfbfc2488e0dea8e94"
        },
        {
          "url": "https://git.kernel.org/stable/c/851cc19bdb02556fb13629b3e4fef6f2bdb038fe"
        },
        {
          "url": "https://git.kernel.org/stable/c/9de184d4e557d550fb0b7b833b676bda4f269e4f"
        },
        {
          "url": "https://git.kernel.org/stable/c/dd92b159c506804ac57adf3742d9728298bb1255"
        },
        {
          "url": "https://git.kernel.org/stable/c/b6b31b4c67ea6bd9222e5b73b330554c57f2f90d"
        },
        {
          "url": "https://git.kernel.org/stable/c/fc3ac2fcd0a7fad63eba1b359490a4b81720d0f9"
        },
        {
          "url": "https://git.kernel.org/stable/c/be9e2752d823eca1d5af67014a1844a9176ff566"
        },
        {
          "url": "https://git.kernel.org/stable/c/1040ef5ed95d6fd2628bad387d78a61633e09429"
        }
      ],
      "title": "clk: qcom: gcc-ipq8074: fix terminating of frequency table arrays",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26969",
    "datePublished": "2024-05-01T05:19:50.580Z",
    "dateReserved": "2024-02-19T14:20:24.202Z",
    "dateUpdated": "2025-05-04T09:01:05.215Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26891 (GCVE-0-2024-26891)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Don't issue ATS Invalidation request when device is disconnected For those endpoint devices connect to system via hotplug capable ports, users could request a hot reset to the device by flapping device's link through setting the slot's link control register, as pciehp_ist() DLLSC interrupt sequence response, pciehp will unload the device driver and then power it off. thus cause an IOMMU device-TLB invalidation (Intel VT-d spec, or ATS Invalidation in PCIe spec r6.1) request for non-existence target device to be sent and deadly loop to retry that request after ITE fault triggered in interrupt context. That would cause following continuous hard lockup warning and system hang [ 4211.433662] pcieport 0000:17:01.0: pciehp: Slot(108): Link Down [ 4211.433664] pcieport 0000:17:01.0: pciehp: Slot(108): Card not present [ 4223.822591] NMI watchdog: Watchdog detected hard LOCKUP on cpu 144 [ 4223.822622] CPU: 144 PID: 1422 Comm: irq/57-pciehp Kdump: loaded Tainted: G S OE kernel version xxxx [ 4223.822623] Hardware name: vendorname xxxx 666-106, BIOS 01.01.02.03.01 05/15/2023 [ 4223.822623] RIP: 0010:qi_submit_sync+0x2c0/0x490 [ 4223.822624] Code: 48 be 00 00 00 00 00 08 00 00 49 85 74 24 20 0f 95 c1 48 8b 57 10 83 c1 04 83 3c 1a 03 0f 84 a2 01 00 00 49 8b 04 24 8b 70 34 <40> f6 c6 1 0 74 17 49 8b 04 24 8b 80 80 00 00 00 89 c2 d3 fa 41 39 [ 4223.822624] RSP: 0018:ffffc4f074f0bbb8 EFLAGS: 00000093 [ 4223.822625] RAX: ffffc4f040059000 RBX: 0000000000000014 RCX: 0000000000000005 [ 4223.822625] RDX: ffff9f3841315800 RSI: 0000000000000000 RDI: ffff9f38401a8340 [ 4223.822625] RBP: ffff9f38401a8340 R08: ffffc4f074f0bc00 R09: 0000000000000000 [ 4223.822626] R10: 0000000000000010 R11: 0000000000000018 R12: ffff9f384005e200 [ 4223.822626] R13: 0000000000000004 R14: 0000000000000046 R15: 0000000000000004 [ 4223.822626] FS: 0000000000000000(0000) GS:ffffa237ae400000(0000) knlGS:0000000000000000 [ 4223.822627] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 4223.822627] CR2: 00007ffe86515d80 CR3: 000002fd3000a001 CR4: 0000000000770ee0 [ 4223.822627] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 4223.822628] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400 [ 4223.822628] PKRU: 55555554 [ 4223.822628] Call Trace: [ 4223.822628] qi_flush_dev_iotlb+0xb1/0xd0 [ 4223.822628] __dmar_remove_one_dev_info+0x224/0x250 [ 4223.822629] dmar_remove_one_dev_info+0x3e/0x50 [ 4223.822629] intel_iommu_release_device+0x1f/0x30 [ 4223.822629] iommu_release_device+0x33/0x60 [ 4223.822629] iommu_bus_notifier+0x7f/0x90 [ 4223.822630] blocking_notifier_call_chain+0x60/0x90 [ 4223.822630] device_del+0x2e5/0x420 [ 4223.822630] pci_remove_bus_device+0x70/0x110 [ 4223.822630] pciehp_unconfigure_device+0x7c/0x130 [ 4223.822631] pciehp_disable_slot+0x6b/0x100 [ 4223.822631] pciehp_handle_presence_or_link_change+0xd8/0x320 [ 4223.822631] pciehp_ist+0x176/0x180 [ 4223.822631] ? irq_finalize_oneshot.part.50+0x110/0x110 [ 4223.822632] irq_thread_fn+0x19/0x50 [ 4223.822632] irq_thread+0x104/0x190 [ 4223.822632] ? irq_forced_thread_fn+0x90/0x90 [ 4223.822632] ? irq_thread_check_affinity+0xe0/0xe0 [ 4223.822633] kthread+0x114/0x130 [ 4223.822633] ? __kthread_cancel_work+0x40/0x40 [ 4223.822633] ret_from_fork+0x1f/0x30 [ 4223.822633] Kernel panic - not syncing: Hard LOCKUP [ 4223.822634] CPU: 144 PID: 1422 Comm: irq/57-pciehp Kdump: loaded Tainted: G S OE kernel version xxxx [ 4223.822634] Hardware name: vendorname xxxx 666-106, BIOS 01.01.02.03.01 05/15/2023 [ 4223.822634] Call Trace: [ 4223.822634] <NMI> [ 4223.822635] dump_stack+0x6d/0x88 [ 4223.822635] panic+0x101/0x2d0 [ 4223.822635] ? ret_from_fork+0x11/0x30 [ 4223.822635] nmi_panic.cold.14+0xc/0xc [ 4223.822636] watchdog_overflow_callback.cold.8+0x6d/0x81 [ 4223.822636] __perf_event_overflow+0x4f/0xf0 [ 4223.822636] handle_pmi_common ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/f873b85ec762c5a6abe94a7ddb31df5d3ba07d85
	https://git.kernel.org/stable/c/d70f1c85113cd8c2aa8373f491ca5d1b22ec0554
	https://git.kernel.org/stable/c/34a7b30f56d30114bf4d436e4dc793afe326fbcf
	https://git.kernel.org/stable/c/2b74b2a92e524d7c8dec8e02e95ecf18b667c062
	https://git.kernel.org/stable/c/c04f2780919f20e2cc4846764221f5e802555868
	https://git.kernel.org/stable/c/025bc6b41e020aeb1e71f84ae3ffce945026de05
	https://git.kernel.org/stable/c/4fc82cd907ac075648789cc3a00877778aa1838b

Impacted products

Vendor

Product

Version

►

Linux

Version: 6f7db75e1c469057fe7588ed959328ead771ccc7
Version: 6f7db75e1c469057fe7588ed959328ead771ccc7
Version: 6f7db75e1c469057fe7588ed959328ead771ccc7
Version: 6f7db75e1c469057fe7588ed959328ead771ccc7
Version: 6f7db75e1c469057fe7588ed959328ead771ccc7
Version: 6f7db75e1c469057fe7588ed959328ead771ccc7
Version: 6f7db75e1c469057fe7588ed959328ead771ccc7

Linux

Version: 5.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26891",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:41:17.252617Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:47:46.218Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.551Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f873b85ec762c5a6abe94a7ddb31df5d3ba07d85"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d70f1c85113cd8c2aa8373f491ca5d1b22ec0554"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/34a7b30f56d30114bf4d436e4dc793afe326fbcf"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2b74b2a92e524d7c8dec8e02e95ecf18b667c062"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c04f2780919f20e2cc4846764221f5e802555868"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/025bc6b41e020aeb1e71f84ae3ffce945026de05"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4fc82cd907ac075648789cc3a00877778aa1838b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/iommu/intel/pasid.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f873b85ec762c5a6abe94a7ddb31df5d3ba07d85",
              "status": "affected",
              "version": "6f7db75e1c469057fe7588ed959328ead771ccc7",
              "versionType": "git"
            },
            {
              "lessThan": "d70f1c85113cd8c2aa8373f491ca5d1b22ec0554",
              "status": "affected",
              "version": "6f7db75e1c469057fe7588ed959328ead771ccc7",
              "versionType": "git"
            },
            {
              "lessThan": "34a7b30f56d30114bf4d436e4dc793afe326fbcf",
              "status": "affected",
              "version": "6f7db75e1c469057fe7588ed959328ead771ccc7",
              "versionType": "git"
            },
            {
              "lessThan": "2b74b2a92e524d7c8dec8e02e95ecf18b667c062",
              "status": "affected",
              "version": "6f7db75e1c469057fe7588ed959328ead771ccc7",
              "versionType": "git"
            },
            {
              "lessThan": "c04f2780919f20e2cc4846764221f5e802555868",
              "status": "affected",
              "version": "6f7db75e1c469057fe7588ed959328ead771ccc7",
              "versionType": "git"
            },
            {
              "lessThan": "025bc6b41e020aeb1e71f84ae3ffce945026de05",
              "status": "affected",
              "version": "6f7db75e1c469057fe7588ed959328ead771ccc7",
              "versionType": "git"
            },
            {
              "lessThan": "4fc82cd907ac075648789cc3a00877778aa1838b",
              "status": "affected",
              "version": "6f7db75e1c469057fe7588ed959328ead771ccc7",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/iommu/intel/pasid.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.0"
            },
            {
              "lessThan": "5.0",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\niommu/vt-d: Don\u0027t issue ATS Invalidation request when device is disconnected\n\nFor those endpoint devices connect to system via hotplug capable ports,\nusers could request a hot reset to the device by flapping device\u0027s link\nthrough setting the slot\u0027s link control register, as pciehp_ist() DLLSC\ninterrupt sequence response, pciehp will unload the device driver and\nthen power it off. thus cause an IOMMU device-TLB invalidation (Intel\nVT-d spec, or ATS Invalidation in PCIe spec r6.1) request for non-existence\ntarget device to be sent and deadly loop to retry that request after ITE\nfault triggered in interrupt context.\n\nThat would cause following continuous hard lockup warning and system hang\n\n[ 4211.433662] pcieport 0000:17:01.0: pciehp: Slot(108): Link Down\n[ 4211.433664] pcieport 0000:17:01.0: pciehp: Slot(108): Card not present\n[ 4223.822591] NMI watchdog: Watchdog detected hard LOCKUP on cpu 144\n[ 4223.822622] CPU: 144 PID: 1422 Comm: irq/57-pciehp Kdump: loaded Tainted: G S\n         OE    kernel version xxxx\n[ 4223.822623] Hardware name: vendorname xxxx 666-106,\nBIOS 01.01.02.03.01 05/15/2023\n[ 4223.822623] RIP: 0010:qi_submit_sync+0x2c0/0x490\n[ 4223.822624] Code: 48 be 00 00 00 00 00 08 00 00 49 85 74 24 20 0f 95 c1 48 8b\n 57 10 83 c1 04 83 3c 1a 03 0f 84 a2 01 00 00 49 8b 04 24 8b 70 34 \u003c40\u003e f6 c6 1\n0 74 17 49 8b 04 24 8b 80 80 00 00 00 89 c2 d3 fa 41 39\n[ 4223.822624] RSP: 0018:ffffc4f074f0bbb8 EFLAGS: 00000093\n[ 4223.822625] RAX: ffffc4f040059000 RBX: 0000000000000014 RCX: 0000000000000005\n[ 4223.822625] RDX: ffff9f3841315800 RSI: 0000000000000000 RDI: ffff9f38401a8340\n[ 4223.822625] RBP: ffff9f38401a8340 R08: ffffc4f074f0bc00 R09: 0000000000000000\n[ 4223.822626] R10: 0000000000000010 R11: 0000000000000018 R12: ffff9f384005e200\n[ 4223.822626] R13: 0000000000000004 R14: 0000000000000046 R15: 0000000000000004\n[ 4223.822626] FS:  0000000000000000(0000) GS:ffffa237ae400000(0000)\nknlGS:0000000000000000\n[ 4223.822627] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4223.822627] CR2: 00007ffe86515d80 CR3: 000002fd3000a001 CR4: 0000000000770ee0\n[ 4223.822627] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4223.822628] DR3: 0000000000000000 DR6: 00000000fffe07f0 DR7: 0000000000000400\n[ 4223.822628] PKRU: 55555554\n[ 4223.822628] Call Trace:\n[ 4223.822628]  qi_flush_dev_iotlb+0xb1/0xd0\n[ 4223.822628]  __dmar_remove_one_dev_info+0x224/0x250\n[ 4223.822629]  dmar_remove_one_dev_info+0x3e/0x50\n[ 4223.822629]  intel_iommu_release_device+0x1f/0x30\n[ 4223.822629]  iommu_release_device+0x33/0x60\n[ 4223.822629]  iommu_bus_notifier+0x7f/0x90\n[ 4223.822630]  blocking_notifier_call_chain+0x60/0x90\n[ 4223.822630]  device_del+0x2e5/0x420\n[ 4223.822630]  pci_remove_bus_device+0x70/0x110\n[ 4223.822630]  pciehp_unconfigure_device+0x7c/0x130\n[ 4223.822631]  pciehp_disable_slot+0x6b/0x100\n[ 4223.822631]  pciehp_handle_presence_or_link_change+0xd8/0x320\n[ 4223.822631]  pciehp_ist+0x176/0x180\n[ 4223.822631]  ? irq_finalize_oneshot.part.50+0x110/0x110\n[ 4223.822632]  irq_thread_fn+0x19/0x50\n[ 4223.822632]  irq_thread+0x104/0x190\n[ 4223.822632]  ? irq_forced_thread_fn+0x90/0x90\n[ 4223.822632]  ? irq_thread_check_affinity+0xe0/0xe0\n[ 4223.822633]  kthread+0x114/0x130\n[ 4223.822633]  ? __kthread_cancel_work+0x40/0x40\n[ 4223.822633]  ret_from_fork+0x1f/0x30\n[ 4223.822633] Kernel panic - not syncing: Hard LOCKUP\n[ 4223.822634] CPU: 144 PID: 1422 Comm: irq/57-pciehp Kdump: loaded Tainted: G S\n         OE     kernel version xxxx\n[ 4223.822634] Hardware name: vendorname xxxx 666-106,\nBIOS 01.01.02.03.01 05/15/2023\n[ 4223.822634] Call Trace:\n[ 4223.822634]  \u003cNMI\u003e\n[ 4223.822635]  dump_stack+0x6d/0x88\n[ 4223.822635]  panic+0x101/0x2d0\n[ 4223.822635]  ? ret_from_fork+0x11/0x30\n[ 4223.822635]  nmi_panic.cold.14+0xc/0xc\n[ 4223.822636]  watchdog_overflow_callback.cold.8+0x6d/0x81\n[ 4223.822636]  __perf_event_overflow+0x4f/0xf0\n[ 4223.822636]  handle_pmi_common\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:59.877Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f873b85ec762c5a6abe94a7ddb31df5d3ba07d85"
        },
        {
          "url": "https://git.kernel.org/stable/c/d70f1c85113cd8c2aa8373f491ca5d1b22ec0554"
        },
        {
          "url": "https://git.kernel.org/stable/c/34a7b30f56d30114bf4d436e4dc793afe326fbcf"
        },
        {
          "url": "https://git.kernel.org/stable/c/2b74b2a92e524d7c8dec8e02e95ecf18b667c062"
        },
        {
          "url": "https://git.kernel.org/stable/c/c04f2780919f20e2cc4846764221f5e802555868"
        },
        {
          "url": "https://git.kernel.org/stable/c/025bc6b41e020aeb1e71f84ae3ffce945026de05"
        },
        {
          "url": "https://git.kernel.org/stable/c/4fc82cd907ac075648789cc3a00877778aa1838b"
        }
      ],
      "title": "iommu/vt-d: Don\u0027t issue ATS Invalidation request when device is disconnected",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26891",
    "datePublished": "2024-04-17T10:27:44.061Z",
    "dateReserved": "2024-02-19T14:20:24.186Z",
    "dateUpdated": "2025-05-04T08:58:59.877Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48647 (GCVE-0-2022-48647)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 12:43

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: sfc: fix TX channel offset when using legacy interrupts In legacy interrupt mode the tx_channel_offset was hardcoded to 1, but that's not correct if efx_sepparate_tx_channels is false. In that case, the offset is 0 because the tx queues are in the single existing channel at index 0, together with the rx queue. Without this fix, as soon as you try to send any traffic, it tries to get the tx queues from an uninitialized channel getting these errors: WARNING: CPU: 1 PID: 0 at drivers/net/ethernet/sfc/tx.c:540 efx_hard_start_xmit+0x12e/0x170 [sfc] [...] RIP: 0010:efx_hard_start_xmit+0x12e/0x170 [sfc] [...] Call Trace: <IRQ> dev_hard_start_xmit+0xd7/0x230 sch_direct_xmit+0x9f/0x360 __dev_queue_xmit+0x890/0xa40 [...] BUG: unable to handle kernel NULL pointer dereference at 0000000000000020 [...] RIP: 0010:efx_hard_start_xmit+0x153/0x170 [sfc] [...] Call Trace: <IRQ> dev_hard_start_xmit+0xd7/0x230 sch_direct_xmit+0x9f/0x360 __dev_queue_xmit+0x890/0xa40 [...]

References

►

URL

Tags

	https://git.kernel.org/stable/c/b4afd3878f961d3517f27b3213730fceef77945c
	https://git.kernel.org/stable/c/360910b88d1466a90644a4e0533803b594344a2b
	https://git.kernel.org/stable/c/5f623a77cfc2d501d72bcb4f9ee71721e6c766ff
	https://git.kernel.org/stable/c/f232af4295653afa4ade3230462b3be15ad16419

Impacted products

Vendor

Product

Version

►

Linux

Version: bf2af9b24313553f3f0b30443220ab0ac8595d2d
Version: 06cb7e134f8f4a11b66f1dbeb5f237412a0aeedc
Version: c308dfd1b43ef0d4c3e57b741bb3462eb7a7f4a2
Version: c308dfd1b43ef0d4c3e57b741bb3462eb7a7f4a2
Version: 1a7c0b3ef93d1d1dae7b0a85dab3ac6e3ad0ef61
Version: b2d60329a0b88c4e35017436ee29c43be59d46a5

Linux

Version: 5.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48647",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T19:07:40.953433Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T19:07:53.011Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.568Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b4afd3878f961d3517f27b3213730fceef77945c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/360910b88d1466a90644a4e0533803b594344a2b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5f623a77cfc2d501d72bcb4f9ee71721e6c766ff"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f232af4295653afa4ade3230462b3be15ad16419"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/sfc/efx_channels.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b4afd3878f961d3517f27b3213730fceef77945c",
              "status": "affected",
              "version": "bf2af9b24313553f3f0b30443220ab0ac8595d2d",
              "versionType": "git"
            },
            {
              "lessThan": "360910b88d1466a90644a4e0533803b594344a2b",
              "status": "affected",
              "version": "06cb7e134f8f4a11b66f1dbeb5f237412a0aeedc",
              "versionType": "git"
            },
            {
              "lessThan": "5f623a77cfc2d501d72bcb4f9ee71721e6c766ff",
              "status": "affected",
              "version": "c308dfd1b43ef0d4c3e57b741bb3462eb7a7f4a2",
              "versionType": "git"
            },
            {
              "lessThan": "f232af4295653afa4ade3230462b3be15ad16419",
              "status": "affected",
              "version": "c308dfd1b43ef0d4c3e57b741bb3462eb7a7f4a2",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "1a7c0b3ef93d1d1dae7b0a85dab3ac6e3ad0ef61",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "b2d60329a0b88c4e35017436ee29c43be59d46a5",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/sfc/efx_channels.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.19"
            },
            {
              "lessThan": "5.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.10.122",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.15.47",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.17.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.18.4",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: fix TX channel offset when using legacy interrupts\n\nIn legacy interrupt mode the tx_channel_offset was hardcoded to 1, but\nthat\u0027s not correct if efx_sepparate_tx_channels is false. In that case,\nthe offset is 0 because the tx queues are in the single existing channel\nat index 0, together with the rx queue.\n\nWithout this fix, as soon as you try to send any traffic, it tries to\nget the tx queues from an uninitialized channel getting these errors:\n  WARNING: CPU: 1 PID: 0 at drivers/net/ethernet/sfc/tx.c:540 efx_hard_start_xmit+0x12e/0x170 [sfc]\n  [...]\n  RIP: 0010:efx_hard_start_xmit+0x12e/0x170 [sfc]\n  [...]\n  Call Trace:\n   \u003cIRQ\u003e\n   dev_hard_start_xmit+0xd7/0x230\n   sch_direct_xmit+0x9f/0x360\n   __dev_queue_xmit+0x890/0xa40\n  [...]\n  BUG: unable to handle kernel NULL pointer dereference at 0000000000000020\n  [...]\n  RIP: 0010:efx_hard_start_xmit+0x153/0x170 [sfc]\n  [...]\n  Call Trace:\n   \u003cIRQ\u003e\n   dev_hard_start_xmit+0xd7/0x230\n   sch_direct_xmit+0x9f/0x360\n   __dev_queue_xmit+0x890/0xa40\n  [...]"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:43:31.202Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b4afd3878f961d3517f27b3213730fceef77945c"
        },
        {
          "url": "https://git.kernel.org/stable/c/360910b88d1466a90644a4e0533803b594344a2b"
        },
        {
          "url": "https://git.kernel.org/stable/c/5f623a77cfc2d501d72bcb4f9ee71721e6c766ff"
        },
        {
          "url": "https://git.kernel.org/stable/c/f232af4295653afa4ade3230462b3be15ad16419"
        }
      ],
      "title": "sfc: fix TX channel offset when using legacy interrupts",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48647",
    "datePublished": "2024-04-28T13:00:19.674Z",
    "dateReserved": "2024-02-25T13:44:28.316Z",
    "dateUpdated": "2025-05-04T12:43:31.202Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52593 (GCVE-0-2023-52593)

Vulnerability from cvelistv5

Published

2024-03-06 06:45

Modified

2025-05-20 14:27

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: wifi: wfx: fix possible NULL pointer dereference in wfx_set_mfp_ap() Since 'ieee80211_beacon_get()' can return NULL, 'wfx_set_mfp_ap()' should check the return value before examining skb data. So convert the latter to return an appropriate error code and propagate it to return from 'wfx_start_ap()' as well. Compile tested only.

References

►

URL

Tags

	https://git.kernel.org/stable/c/574dcd3126aa2eed75437137843f254b1190dd03
	https://git.kernel.org/stable/c/9ab224744a47363f74ea29c6894c405e3bcf5132
	https://git.kernel.org/stable/c/3739121443f5114c6bcf6d841a5124deb006b878
	https://git.kernel.org/stable/c/fe0a7776d4d19e613bb8dd80fe2d78ae49e8b49d

Impacted products

Vendor

Product

Version

►

Linux

Version: 268bceec1684932e194ae87877dcc73f534d921c
Version: 268bceec1684932e194ae87877dcc73f534d921c
Version: 268bceec1684932e194ae87877dcc73f534d921c
Version: 268bceec1684932e194ae87877dcc73f534d921c

Linux

Version: 5.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.203Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/574dcd3126aa2eed75437137843f254b1190dd03"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9ab224744a47363f74ea29c6894c405e3bcf5132"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3739121443f5114c6bcf6d841a5124deb006b878"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fe0a7776d4d19e613bb8dd80fe2d78ae49e8b49d"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52593",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-27T14:56:35.440963Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-27T15:03:29.606Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/silabs/wfx/sta.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "574dcd3126aa2eed75437137843f254b1190dd03",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            },
            {
              "lessThan": "9ab224744a47363f74ea29c6894c405e3bcf5132",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            },
            {
              "lessThan": "3739121443f5114c6bcf6d841a5124deb006b878",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            },
            {
              "lessThan": "fe0a7776d4d19e613bb8dd80fe2d78ae49e8b49d",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/silabs/wfx/sta.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.77",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.77",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.16",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.4",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wfx: fix possible NULL pointer dereference in wfx_set_mfp_ap()\n\nSince \u0027ieee80211_beacon_get()\u0027 can return NULL, \u0027wfx_set_mfp_ap()\u0027\nshould check the return value before examining skb data. So convert\nthe latter to return an appropriate error code and propagate it to\nreturn from \u0027wfx_start_ap()\u0027 as well. Compile tested only."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-20T14:27:28.879Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/574dcd3126aa2eed75437137843f254b1190dd03"
        },
        {
          "url": "https://git.kernel.org/stable/c/9ab224744a47363f74ea29c6894c405e3bcf5132"
        },
        {
          "url": "https://git.kernel.org/stable/c/3739121443f5114c6bcf6d841a5124deb006b878"
        },
        {
          "url": "https://git.kernel.org/stable/c/fe0a7776d4d19e613bb8dd80fe2d78ae49e8b49d"
        }
      ],
      "title": "wifi: wfx: fix possible NULL pointer dereference in wfx_set_mfp_ap()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52593",
    "datePublished": "2024-03-06T06:45:24.551Z",
    "dateReserved": "2024-03-02T21:55:42.571Z",
    "dateUpdated": "2025-05-20T14:27:28.879Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27056 (GCVE-0-2024-27056)

Vulnerability from cvelistv5

Published

2024-05-01 12:54

Modified

2025-05-04 09:03

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: ensure offloading TID queue exists The resume code path assumes that the TX queue for the offloading TID has been configured. At resume time it then tries to sync the write pointer as it may have been updated by the firmware. In the unusual event that no packets have been send on TID 0, the queue will not have been allocated and this causes a crash. Fix this by ensuring the queue exist at suspend time.

References

►

URL

Tags

	https://git.kernel.org/stable/c/4903303f25f48b5a1e34e6324c7fae9ccd6b959a
	https://git.kernel.org/stable/c/35afffaddbe8d310dc61659da0b1a337b0d0addc
	https://git.kernel.org/stable/c/ed35a509390ef4011ea2226da5dd6f62b73873b5
	https://git.kernel.org/stable/c/78f65fbf421a61894c14a1b91fe2fb4437b3fe5f

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27056",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-14T18:56:53.043911Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-14T18:56:59.749Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.952Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ed35a509390ef4011ea2226da5dd6f62b73873b5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/78f65fbf421a61894c14a1b91fe2fb4437b3fe5f"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/intel/iwlwifi/mvm/d3.c",
            "drivers/net/wireless/intel/iwlwifi/mvm/sta.c",
            "drivers/net/wireless/intel/iwlwifi/mvm/sta.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "4903303f25f48b5a1e34e6324c7fae9ccd6b959a",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "35afffaddbe8d310dc61659da0b1a337b0d0addc",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ed35a509390ef4011ea2226da5dd6f62b73873b5",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "78f65fbf421a61894c14a1b91fe2fb4437b3fe5f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/intel/iwlwifi/mvm/d3.c",
            "drivers/net/wireless/intel/iwlwifi/mvm/sta.c",
            "drivers/net/wireless/intel/iwlwifi/mvm/sta.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.132",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.85",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.132",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.85",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: mvm: ensure offloading TID queue exists\n\nThe resume code path assumes that the TX queue for the offloading TID\nhas been configured. At resume time it then tries to sync the write\npointer as it may have been updated by the firmware.\n\nIn the unusual event that no packets have been send on TID 0, the queue\nwill not have been allocated and this causes a crash. Fix this by\nensuring the queue exist at suspend time."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:03:15.105Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/4903303f25f48b5a1e34e6324c7fae9ccd6b959a"
        },
        {
          "url": "https://git.kernel.org/stable/c/35afffaddbe8d310dc61659da0b1a337b0d0addc"
        },
        {
          "url": "https://git.kernel.org/stable/c/ed35a509390ef4011ea2226da5dd6f62b73873b5"
        },
        {
          "url": "https://git.kernel.org/stable/c/78f65fbf421a61894c14a1b91fe2fb4437b3fe5f"
        }
      ],
      "title": "wifi: iwlwifi: mvm: ensure offloading TID queue exists",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27056",
    "datePublished": "2024-05-01T12:54:56.461Z",
    "dateReserved": "2024-02-19T14:20:24.214Z",
    "dateUpdated": "2025-05-04T09:03:15.105Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47206 (GCVE-0-2021-47206)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-tmio: check return value after calling platform_get_resource() It will cause null-ptr-deref if platform_get_resource() returns NULL, we need check the return value.

References

►

URL

Tags

	https://git.kernel.org/stable/c/28e016e02118917e50a667bc72fb80098cf2b460
	https://git.kernel.org/stable/c/2f18f97a1a787154a372c0738f1576f14b693d91
	https://git.kernel.org/stable/c/bb6ed2e05eb6e8619b30fa854f9becd50c11723f
	https://git.kernel.org/stable/c/951b8239fd24678b56c995c5c0456ab12e059d19
	https://git.kernel.org/stable/c/f98986b7acb4219f95789095eced93ed69d81d35
	https://git.kernel.org/stable/c/2474eb7fc3bfbce10f7b8ea431fcffe5dd5f5100
	https://git.kernel.org/stable/c/065334f6640d074a1caec2f8b0091467a22f9483
	https://git.kernel.org/stable/c/9eff2b2e59fda25051ab36cd1cb5014661df657b

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47206",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-21T16:04:28.537422Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-21T16:04:37.774Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.335Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/28e016e02118917e50a667bc72fb80098cf2b460"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2f18f97a1a787154a372c0738f1576f14b693d91"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bb6ed2e05eb6e8619b30fa854f9becd50c11723f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/951b8239fd24678b56c995c5c0456ab12e059d19"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f98986b7acb4219f95789095eced93ed69d81d35"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2474eb7fc3bfbce10f7b8ea431fcffe5dd5f5100"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/065334f6640d074a1caec2f8b0091467a22f9483"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9eff2b2e59fda25051ab36cd1cb5014661df657b"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/host/ohci-tmio.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "28e016e02118917e50a667bc72fb80098cf2b460",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "2f18f97a1a787154a372c0738f1576f14b693d91",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "bb6ed2e05eb6e8619b30fa854f9becd50c11723f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "951b8239fd24678b56c995c5c0456ab12e059d19",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f98986b7acb4219f95789095eced93ed69d81d35",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "2474eb7fc3bfbce10f7b8ea431fcffe5dd5f5100",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "065334f6640d074a1caec2f8b0091467a22f9483",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "9eff2b2e59fda25051ab36cd1cb5014661df657b",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/host/ohci-tmio.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.4.*",
              "status": "unaffected",
              "version": "4.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.291",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.256",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.4.293",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.291",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.256",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: host: ohci-tmio: check return value after calling platform_get_resource()\n\nIt will cause null-ptr-deref if platform_get_resource() returns NULL,\nwe need check the return value."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:23.050Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/28e016e02118917e50a667bc72fb80098cf2b460"
        },
        {
          "url": "https://git.kernel.org/stable/c/2f18f97a1a787154a372c0738f1576f14b693d91"
        },
        {
          "url": "https://git.kernel.org/stable/c/bb6ed2e05eb6e8619b30fa854f9becd50c11723f"
        },
        {
          "url": "https://git.kernel.org/stable/c/951b8239fd24678b56c995c5c0456ab12e059d19"
        },
        {
          "url": "https://git.kernel.org/stable/c/f98986b7acb4219f95789095eced93ed69d81d35"
        },
        {
          "url": "https://git.kernel.org/stable/c/2474eb7fc3bfbce10f7b8ea431fcffe5dd5f5100"
        },
        {
          "url": "https://git.kernel.org/stable/c/065334f6640d074a1caec2f8b0091467a22f9483"
        },
        {
          "url": "https://git.kernel.org/stable/c/9eff2b2e59fda25051ab36cd1cb5014661df657b"
        }
      ],
      "title": "usb: host: ohci-tmio: check return value after calling platform_get_resource()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47206",
    "datePublished": "2024-04-10T18:56:38.995Z",
    "dateReserved": "2024-03-25T09:12:14.118Z",
    "dateUpdated": "2025-05-04T07:06:23.050Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47212 (GCVE-0-2021-47212)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Update error handler for UCTX and UMEM In the fast unload flow, the device state is set to internal error, which indicates that the driver started the destroy process. In this case, when a destroy command is being executed, it should return MLX5_CMD_STAT_OK. Fix MLX5_CMD_OP_DESTROY_UCTX and MLX5_CMD_OP_DESTROY_UMEM to return OK instead of EIO. This fixes a call trace in the umem release process - [ 2633.536695] Call Trace: [ 2633.537518] ib_uverbs_remove_one+0xc3/0x140 [ib_uverbs] [ 2633.538596] remove_client_context+0x8b/0xd0 [ib_core] [ 2633.539641] disable_device+0x8c/0x130 [ib_core] [ 2633.540615] __ib_unregister_device+0x35/0xa0 [ib_core] [ 2633.541640] ib_unregister_device+0x21/0x30 [ib_core] [ 2633.542663] __mlx5_ib_remove+0x38/0x90 [mlx5_ib] [ 2633.543640] auxiliary_bus_remove+0x1e/0x30 [auxiliary] [ 2633.544661] device_release_driver_internal+0x103/0x1f0 [ 2633.545679] bus_remove_device+0xf7/0x170 [ 2633.546640] device_del+0x181/0x410 [ 2633.547606] mlx5_rescan_drivers_locked.part.10+0x63/0x160 [mlx5_core] [ 2633.548777] mlx5_unregister_device+0x27/0x40 [mlx5_core] [ 2633.549841] mlx5_uninit_one+0x21/0xc0 [mlx5_core] [ 2633.550864] remove_one+0x69/0xe0 [mlx5_core] [ 2633.551819] pci_device_remove+0x3b/0xc0 [ 2633.552731] device_release_driver_internal+0x103/0x1f0 [ 2633.553746] unbind_store+0xf6/0x130 [ 2633.554657] kernfs_fop_write+0x116/0x190 [ 2633.555567] vfs_write+0xa5/0x1a0 [ 2633.556407] ksys_write+0x4f/0xb0 [ 2633.557233] do_syscall_64+0x5b/0x1a0 [ 2633.558071] entry_SYSCALL_64_after_hwframe+0x65/0xca [ 2633.559018] RIP: 0033:0x7f9977132648 [ 2633.559821] Code: 89 02 48 c7 c0 ff ff ff ff eb b3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 8d 05 55 6f 2d 00 8b 00 85 c0 75 17 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 41 54 49 89 d4 55 [ 2633.562332] RSP: 002b:00007fffb1a83888 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 2633.563472] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00007f9977132648 [ 2633.564541] RDX: 000000000000000c RSI: 000055b90546e230 RDI: 0000000000000001 [ 2633.565596] RBP: 000055b90546e230 R08: 00007f9977406860 R09: 00007f9977a54740 [ 2633.566653] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f99774056e0 [ 2633.567692] R13: 000000000000000c R14: 00007f9977400880 R15: 000000000000000c [ 2633.568725] ---[ end trace 10b4fe52945e544d ]---

References

►

URL

Tags

	https://git.kernel.org/stable/c/a51a6da375d82aed5c8f83abd13e7d060421bd48
	https://git.kernel.org/stable/c/ba50cd9451f6c49cf0841c0a4a146ff6a2822699

Impacted products

Vendor

Product

Version

►

Linux

Version: 6a6fabbfa3e8c656ff906ae999fb6856410fa4cd
Version: 6a6fabbfa3e8c656ff906ae999fb6856410fa4cd

Linux

Version: 5.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47212",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T18:03:48.572043Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T18:04:44.861Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.274Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a51a6da375d82aed5c8f83abd13e7d060421bd48"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ba50cd9451f6c49cf0841c0a4a146ff6a2822699"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/cmd.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a51a6da375d82aed5c8f83abd13e7d060421bd48",
              "status": "affected",
              "version": "6a6fabbfa3e8c656ff906ae999fb6856410fa4cd",
              "versionType": "git"
            },
            {
              "lessThan": "ba50cd9451f6c49cf0841c0a4a146ff6a2822699",
              "status": "affected",
              "version": "6a6fabbfa3e8c656ff906ae999fb6856410fa4cd",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/cmd.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.2"
            },
            {
              "lessThan": "5.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5: Update error handler for UCTX and UMEM\n\nIn the fast unload flow, the device state is set to internal error,\nwhich indicates that the driver started the destroy process.\nIn this case, when a destroy command is being executed, it should return\nMLX5_CMD_STAT_OK.\nFix MLX5_CMD_OP_DESTROY_UCTX and MLX5_CMD_OP_DESTROY_UMEM to return OK\ninstead of EIO.\n\nThis fixes a call trace in the umem release process -\n[ 2633.536695] Call Trace:\n[ 2633.537518]  ib_uverbs_remove_one+0xc3/0x140 [ib_uverbs]\n[ 2633.538596]  remove_client_context+0x8b/0xd0 [ib_core]\n[ 2633.539641]  disable_device+0x8c/0x130 [ib_core]\n[ 2633.540615]  __ib_unregister_device+0x35/0xa0 [ib_core]\n[ 2633.541640]  ib_unregister_device+0x21/0x30 [ib_core]\n[ 2633.542663]  __mlx5_ib_remove+0x38/0x90 [mlx5_ib]\n[ 2633.543640]  auxiliary_bus_remove+0x1e/0x30 [auxiliary]\n[ 2633.544661]  device_release_driver_internal+0x103/0x1f0\n[ 2633.545679]  bus_remove_device+0xf7/0x170\n[ 2633.546640]  device_del+0x181/0x410\n[ 2633.547606]  mlx5_rescan_drivers_locked.part.10+0x63/0x160 [mlx5_core]\n[ 2633.548777]  mlx5_unregister_device+0x27/0x40 [mlx5_core]\n[ 2633.549841]  mlx5_uninit_one+0x21/0xc0 [mlx5_core]\n[ 2633.550864]  remove_one+0x69/0xe0 [mlx5_core]\n[ 2633.551819]  pci_device_remove+0x3b/0xc0\n[ 2633.552731]  device_release_driver_internal+0x103/0x1f0\n[ 2633.553746]  unbind_store+0xf6/0x130\n[ 2633.554657]  kernfs_fop_write+0x116/0x190\n[ 2633.555567]  vfs_write+0xa5/0x1a0\n[ 2633.556407]  ksys_write+0x4f/0xb0\n[ 2633.557233]  do_syscall_64+0x5b/0x1a0\n[ 2633.558071]  entry_SYSCALL_64_after_hwframe+0x65/0xca\n[ 2633.559018] RIP: 0033:0x7f9977132648\n[ 2633.559821] Code: 89 02 48 c7 c0 ff ff ff ff eb b3 0f 1f 80 00 00 00 00 f3 0f 1e fa 48 8d 05 55 6f 2d 00 8b 00 85 c0 75 17 b8 01 00 00 00 0f 05 \u003c48\u003e 3d 00 f0 ff ff 77 58 c3 0f 1f 80 00 00 00 00 41 54 49 89 d4 55\n[ 2633.562332] RSP: 002b:00007fffb1a83888 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\n[ 2633.563472] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00007f9977132648\n[ 2633.564541] RDX: 000000000000000c RSI: 000055b90546e230 RDI: 0000000000000001\n[ 2633.565596] RBP: 000055b90546e230 R08: 00007f9977406860 R09: 00007f9977a54740\n[ 2633.566653] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f99774056e0\n[ 2633.567692] R13: 000000000000000c R14: 00007f9977400880 R15: 000000000000000c\n[ 2633.568725] ---[ end trace 10b4fe52945e544d ]---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:28.557Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a51a6da375d82aed5c8f83abd13e7d060421bd48"
        },
        {
          "url": "https://git.kernel.org/stable/c/ba50cd9451f6c49cf0841c0a4a146ff6a2822699"
        }
      ],
      "title": "net/mlx5: Update error handler for UCTX and UMEM",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47212",
    "datePublished": "2024-04-10T19:01:53.270Z",
    "dateReserved": "2024-04-10T18:59:19.527Z",
    "dateUpdated": "2025-05-04T07:06:28.557Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48701 (GCVE-0-2022-48701)

Vulnerability from cvelistv5

Published

2024-05-03 15:12

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface() There may be a bad USB audio device with a USB ID of (0x04fa, 0x4201) and the number of it's interfaces less than 4, an out-of-bounds read bug occurs when parsing the interface descriptor for this device. Fix this by checking the number of interfaces.

References

►

URL

Tags

	https://git.kernel.org/stable/c/b970518014f2f0f6c493fb86c1e092b936899061
	https://git.kernel.org/stable/c/91904870370fd986c29719846ed76d559de43251
	https://git.kernel.org/stable/c/2a308e415d247a23d4d64c964c02e782eede2936
	https://git.kernel.org/stable/c/0492798bf8dfcc09c9337a1ba065da1d1ca68712
	https://git.kernel.org/stable/c/6123bec8480d23369e2ee0b2208611619f269faf
	https://git.kernel.org/stable/c/98e8e67395cc6d0cdf3a771f86ea42d0ee6e59dd
	https://git.kernel.org/stable/c/8293e61bbf908b18ff9935238d4fc2ad359e3fe0
	https://git.kernel.org/stable/c/e53f47f6c1a56d2af728909f1cb894da6b43d9bf

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48701",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:39:55.241403Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:44:44.739Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.711Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b970518014f2f0f6c493fb86c1e092b936899061"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/91904870370fd986c29719846ed76d559de43251"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2a308e415d247a23d4d64c964c02e782eede2936"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0492798bf8dfcc09c9337a1ba065da1d1ca68712"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6123bec8480d23369e2ee0b2208611619f269faf"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/98e8e67395cc6d0cdf3a771f86ea42d0ee6e59dd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8293e61bbf908b18ff9935238d4fc2ad359e3fe0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e53f47f6c1a56d2af728909f1cb894da6b43d9bf"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "sound/usb/stream.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b970518014f2f0f6c493fb86c1e092b936899061",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "91904870370fd986c29719846ed76d559de43251",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "2a308e415d247a23d4d64c964c02e782eede2936",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "0492798bf8dfcc09c9337a1ba065da1d1ca68712",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6123bec8480d23369e2ee0b2208611619f269faf",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "98e8e67395cc6d0cdf3a771f86ea42d0ee6e59dd",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "8293e61bbf908b18ff9935238d4fc2ad359e3fe0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "e53f47f6c1a56d2af728909f1cb894da6b43d9bf",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "sound/usb/stream.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.328",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.258",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.328",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.293",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.258",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface()\n\nThere may be a bad USB audio device with a USB ID of (0x04fa, 0x4201) and\nthe number of it\u0027s interfaces less than 4, an out-of-bounds read bug occurs\nwhen parsing the interface descriptor for this device.\n\nFix this by checking the number of interfaces."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:19.926Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b970518014f2f0f6c493fb86c1e092b936899061"
        },
        {
          "url": "https://git.kernel.org/stable/c/91904870370fd986c29719846ed76d559de43251"
        },
        {
          "url": "https://git.kernel.org/stable/c/2a308e415d247a23d4d64c964c02e782eede2936"
        },
        {
          "url": "https://git.kernel.org/stable/c/0492798bf8dfcc09c9337a1ba065da1d1ca68712"
        },
        {
          "url": "https://git.kernel.org/stable/c/6123bec8480d23369e2ee0b2208611619f269faf"
        },
        {
          "url": "https://git.kernel.org/stable/c/98e8e67395cc6d0cdf3a771f86ea42d0ee6e59dd"
        },
        {
          "url": "https://git.kernel.org/stable/c/8293e61bbf908b18ff9935238d4fc2ad359e3fe0"
        },
        {
          "url": "https://git.kernel.org/stable/c/e53f47f6c1a56d2af728909f1cb894da6b43d9bf"
        }
      ],
      "title": "ALSA: usb-audio: Fix an out-of-bounds bug in __snd_usb_parse_audio_interface()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48701",
    "datePublished": "2024-05-03T15:12:34.160Z",
    "dateReserved": "2024-05-03T14:55:07.146Z",
    "dateUpdated": "2025-05-04T08:21:19.926Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26601 (GCVE-0-2024-26601)

Vulnerability from cvelistv5

Published

2024-02-24 14:56

Modified

2025-05-04 08:52

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ext4: regenerate buddy after block freeing failed if under fc replay This mostly reverts commit 6bd97bf273bd ("ext4: remove redundant mb_regenerate_buddy()") and reintroduces mb_regenerate_buddy(). Based on code in mb_free_blocks(), fast commit replay can end up marking as free blocks that are already marked as such. This causes corruption of the buddy bitmap so we need to regenerate it in that case.

References

►

URL

Tags

	https://git.kernel.org/stable/c/94ebf71bddbcd4ab1ce43ae32c6cb66396d2d51a
	https://git.kernel.org/stable/c/c1317822e2de80e78f137d3a2d99febab1b80326
	https://git.kernel.org/stable/c/78327acd4cdc4a1601af718b781eece577b6b7d4
	https://git.kernel.org/stable/c/ea42d6cffb0dd27a417f410b9d0011e9859328cb
	https://git.kernel.org/stable/c/6b0d48647935e4b8c7b75d1eccb9043fcd4ee581
	https://git.kernel.org/stable/c/c9b528c35795b711331ed36dc3dbee90d5812d4e

Impacted products

Vendor

Product

Version

►

Linux

Version: 0983142c5f17a62055ec851372273c3bc77e4788
Version: 6bd97bf273bdb4944904e57480f6545bca48ad77
Version: 6bd97bf273bdb4944904e57480f6545bca48ad77
Version: 6bd97bf273bdb4944904e57480f6545bca48ad77
Version: 6bd97bf273bdb4944904e57480f6545bca48ad77
Version: 6bd97bf273bdb4944904e57480f6545bca48ad77

Linux

Version: 5.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26601",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-01T15:48:58.021731Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:48:55.950Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:07:19.651Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/94ebf71bddbcd4ab1ce43ae32c6cb66396d2d51a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c1317822e2de80e78f137d3a2d99febab1b80326"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/78327acd4cdc4a1601af718b781eece577b6b7d4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ea42d6cffb0dd27a417f410b9d0011e9859328cb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6b0d48647935e4b8c7b75d1eccb9043fcd4ee581"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c9b528c35795b711331ed36dc3dbee90d5812d4e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/mballoc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "94ebf71bddbcd4ab1ce43ae32c6cb66396d2d51a",
              "status": "affected",
              "version": "0983142c5f17a62055ec851372273c3bc77e4788",
              "versionType": "git"
            },
            {
              "lessThan": "c1317822e2de80e78f137d3a2d99febab1b80326",
              "status": "affected",
              "version": "6bd97bf273bdb4944904e57480f6545bca48ad77",
              "versionType": "git"
            },
            {
              "lessThan": "78327acd4cdc4a1601af718b781eece577b6b7d4",
              "status": "affected",
              "version": "6bd97bf273bdb4944904e57480f6545bca48ad77",
              "versionType": "git"
            },
            {
              "lessThan": "ea42d6cffb0dd27a417f410b9d0011e9859328cb",
              "status": "affected",
              "version": "6bd97bf273bdb4944904e57480f6545bca48ad77",
              "versionType": "git"
            },
            {
              "lessThan": "6b0d48647935e4b8c7b75d1eccb9043fcd4ee581",
              "status": "affected",
              "version": "6bd97bf273bdb4944904e57480f6545bca48ad77",
              "versionType": "git"
            },
            {
              "lessThan": "c9b528c35795b711331ed36dc3dbee90d5812d4e",
              "status": "affected",
              "version": "6bd97bf273bdb4944904e57480f6545bca48ad77",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/mballoc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.11"
            },
            {
              "lessThan": "5.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.211",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.78",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.17",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.211",
                  "versionStartIncluding": "5.10.181",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.78",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.17",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.5",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: regenerate buddy after block freeing failed if under fc replay\n\nThis mostly reverts commit 6bd97bf273bd (\"ext4: remove redundant\nmb_regenerate_buddy()\") and reintroduces mb_regenerate_buddy(). Based on\ncode in mb_free_blocks(), fast commit replay can end up marking as free\nblocks that are already marked as such. This causes corruption of the\nbuddy bitmap so we need to regenerate it in that case."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:52:05.085Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/94ebf71bddbcd4ab1ce43ae32c6cb66396d2d51a"
        },
        {
          "url": "https://git.kernel.org/stable/c/c1317822e2de80e78f137d3a2d99febab1b80326"
        },
        {
          "url": "https://git.kernel.org/stable/c/78327acd4cdc4a1601af718b781eece577b6b7d4"
        },
        {
          "url": "https://git.kernel.org/stable/c/ea42d6cffb0dd27a417f410b9d0011e9859328cb"
        },
        {
          "url": "https://git.kernel.org/stable/c/6b0d48647935e4b8c7b75d1eccb9043fcd4ee581"
        },
        {
          "url": "https://git.kernel.org/stable/c/c9b528c35795b711331ed36dc3dbee90d5812d4e"
        }
      ],
      "title": "ext4: regenerate buddy after block freeing failed if under fc replay",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26601",
    "datePublished": "2024-02-24T14:56:56.324Z",
    "dateReserved": "2024-02-19T14:20:24.128Z",
    "dateUpdated": "2025-05-04T08:52:05.085Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26688 (GCVE-0-2024-26688)

Vulnerability from cvelistv5

Published

2024-04-03 14:54

Modified

2025-05-04 08:54

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super When configuring a hugetlb filesystem via the fsconfig() syscall, there is a possible NULL dereference in hugetlbfs_fill_super() caused by assigning NULL to ctx->hstate in hugetlbfs_parse_param() when the requested pagesize is non valid. E.g: Taking the following steps: fd = fsopen("hugetlbfs", FSOPEN_CLOEXEC); fsconfig(fd, FSCONFIG_SET_STRING, "pagesize", "1024", 0); fsconfig(fd, FSCONFIG_CMD_CREATE, NULL, NULL, 0); Given that the requested "pagesize" is invalid, ctxt->hstate will be replaced with NULL, losing its previous value, and we will print an error: ... ... case Opt_pagesize: ps = memparse(param->string, &rest); ctx->hstate = h; if (!ctx->hstate) { pr_err("Unsupported page size %lu MB\n", ps / SZ_1M); return -EINVAL; } return 0; ... ... This is a problem because later on, we will dereference ctxt->hstate in hugetlbfs_fill_super() ... ... sb->s_blocksize = huge_page_size(ctx->hstate); ... ... Causing below Oops. Fix this by replacing cxt->hstate value only when then pagesize is known to be valid. kernel: hugetlbfs: Unsupported page size 0 MB kernel: BUG: kernel NULL pointer dereference, address: 0000000000000028 kernel: #PF: supervisor read access in kernel mode kernel: #PF: error_code(0x0000) - not-present page kernel: PGD 800000010f66c067 P4D 800000010f66c067 PUD 1b22f8067 PMD 0 kernel: Oops: 0000 [#1] PREEMPT SMP PTI kernel: CPU: 4 PID: 5659 Comm: syscall Tainted: G E 6.8.0-rc2-default+ #22 5a47c3fef76212addcc6eb71344aabc35190ae8f kernel: Hardware name: Intel Corp. GROVEPORT/GROVEPORT, BIOS GVPRCRB1.86B.0016.D04.1705030402 05/03/2017 kernel: RIP: 0010:hugetlbfs_fill_super+0xb4/0x1a0 kernel: Code: 48 8b 3b e8 3e c6 ed ff 48 85 c0 48 89 45 20 0f 84 d6 00 00 00 48 b8 ff ff ff ff ff ff ff 7f 4c 89 e7 49 89 44 24 20 48 8b 03 <8b> 48 28 b8 00 10 00 00 48 d3 e0 49 89 44 24 18 48 8b 03 8b 40 28 kernel: RSP: 0018:ffffbe9960fcbd48 EFLAGS: 00010246 kernel: RAX: 0000000000000000 RBX: ffff9af5272ae780 RCX: 0000000000372004 kernel: RDX: ffffffffffffffff RSI: ffffffffffffffff RDI: ffff9af555e9b000 kernel: RBP: ffff9af52ee66b00 R08: 0000000000000040 R09: 0000000000370004 kernel: R10: ffffbe9960fcbd48 R11: 0000000000000040 R12: ffff9af555e9b000 kernel: R13: ffffffffa66b86c0 R14: ffff9af507d2f400 R15: ffff9af507d2f400 kernel: FS: 00007ffbc0ba4740(0000) GS:ffff9b0bd7000000(0000) knlGS:0000000000000000 kernel: CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 kernel: CR2: 0000000000000028 CR3: 00000001b1ee0000 CR4: 00000000001506f0 kernel: Call Trace: kernel: <TASK> kernel: ? __die_body+0x1a/0x60 kernel: ? page_fault_oops+0x16f/0x4a0 kernel: ? search_bpf_extables+0x65/0x70 kernel: ? fixup_exception+0x22/0x310 kernel: ? exc_page_fault+0x69/0x150 kernel: ? asm_exc_page_fault+0x22/0x30 kernel: ? __pfx_hugetlbfs_fill_super+0x10/0x10 kernel: ? hugetlbfs_fill_super+0xb4/0x1a0 kernel: ? hugetlbfs_fill_super+0x28/0x1a0 kernel: ? __pfx_hugetlbfs_fill_super+0x10/0x10 kernel: vfs_get_super+0x40/0xa0 kernel: ? __pfx_bpf_lsm_capable+0x10/0x10 kernel: vfs_get_tree+0x25/0xd0 kernel: vfs_cmd_create+0x64/0xe0 kernel: __x64_sys_fsconfig+0x395/0x410 kernel: do_syscall_64+0x80/0x160 kernel: ? syscall_exit_to_user_mode+0x82/0x240 kernel: ? do_syscall_64+0x8d/0x160 kernel: ? syscall_exit_to_user_mode+0x82/0x240 kernel: ? do_syscall_64+0x8d/0x160 kernel: ? exc_page_fault+0x69/0x150 kernel: entry_SYSCALL_64_after_hwframe+0x6e/0x76 kernel: RIP: 0033:0x7ffbc0cb87c9 kernel: Code: 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 97 96 0d 00 f7 d8 64 89 01 48 kernel: RSP: 002b:00007ffc29d2f388 EFLAGS: 00000206 ORIG_RAX: 00000000000001af kernel: RAX: fffffffffff ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/1dde8ef4b7a749ae1bc73617c91775631d167557
	https://git.kernel.org/stable/c/80d852299987a8037be145a94f41874228f1a773
	https://git.kernel.org/stable/c/22850c9950a4e43a67299755d11498f3292d02ff
	https://git.kernel.org/stable/c/2e2c07104b4904aed1389a59b25799b95a85b5b9
	https://git.kernel.org/stable/c/13c5a9fb07105557a1fa9efdb4f23d7ef30b7274
	https://git.kernel.org/stable/c/ec78418801ef7b0c22cd6a30145ec480dd48db39
	https://git.kernel.org/stable/c/79d72c68c58784a3e1cd2378669d51bfd0cb7498

Impacted products

Vendor

Product

Version

►

Linux

Version: 32021982a324dce93b4ae00c06213bf45fb319c8
Version: 32021982a324dce93b4ae00c06213bf45fb319c8
Version: 32021982a324dce93b4ae00c06213bf45fb319c8
Version: 32021982a324dce93b4ae00c06213bf45fb319c8
Version: 32021982a324dce93b4ae00c06213bf45fb319c8
Version: 32021982a324dce93b4ae00c06213bf45fb319c8
Version: 32021982a324dce93b4ae00c06213bf45fb319c8

Linux

Version: 5.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:12.699Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1dde8ef4b7a749ae1bc73617c91775631d167557"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/80d852299987a8037be145a94f41874228f1a773"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/22850c9950a4e43a67299755d11498f3292d02ff"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2e2c07104b4904aed1389a59b25799b95a85b5b9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/13c5a9fb07105557a1fa9efdb4f23d7ef30b7274"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ec78418801ef7b0c22cd6a30145ec480dd48db39"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/79d72c68c58784a3e1cd2378669d51bfd0cb7498"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26688",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:53:03.970404Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:32.587Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/hugetlbfs/inode.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "1dde8ef4b7a749ae1bc73617c91775631d167557",
              "status": "affected",
              "version": "32021982a324dce93b4ae00c06213bf45fb319c8",
              "versionType": "git"
            },
            {
              "lessThan": "80d852299987a8037be145a94f41874228f1a773",
              "status": "affected",
              "version": "32021982a324dce93b4ae00c06213bf45fb319c8",
              "versionType": "git"
            },
            {
              "lessThan": "22850c9950a4e43a67299755d11498f3292d02ff",
              "status": "affected",
              "version": "32021982a324dce93b4ae00c06213bf45fb319c8",
              "versionType": "git"
            },
            {
              "lessThan": "2e2c07104b4904aed1389a59b25799b95a85b5b9",
              "status": "affected",
              "version": "32021982a324dce93b4ae00c06213bf45fb319c8",
              "versionType": "git"
            },
            {
              "lessThan": "13c5a9fb07105557a1fa9efdb4f23d7ef30b7274",
              "status": "affected",
              "version": "32021982a324dce93b4ae00c06213bf45fb319c8",
              "versionType": "git"
            },
            {
              "lessThan": "ec78418801ef7b0c22cd6a30145ec480dd48db39",
              "status": "affected",
              "version": "32021982a324dce93b4ae00c06213bf45fb319c8",
              "versionType": "git"
            },
            {
              "lessThan": "79d72c68c58784a3e1cd2378669d51bfd0cb7498",
              "status": "affected",
              "version": "32021982a324dce93b4ae00c06213bf45fb319c8",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/hugetlbfs/inode.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.1"
            },
            {
              "lessThan": "5.1",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.271",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.212",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.151",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.79",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.271",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.212",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.151",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.79",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super\n\nWhen configuring a hugetlb filesystem via the fsconfig() syscall, there is\na possible NULL dereference in hugetlbfs_fill_super() caused by assigning\nNULL to ctx-\u003ehstate in hugetlbfs_parse_param() when the requested pagesize\nis non valid.\n\nE.g: Taking the following steps:\n\n     fd = fsopen(\"hugetlbfs\", FSOPEN_CLOEXEC);\n     fsconfig(fd, FSCONFIG_SET_STRING, \"pagesize\", \"1024\", 0);\n     fsconfig(fd, FSCONFIG_CMD_CREATE, NULL, NULL, 0);\n\nGiven that the requested \"pagesize\" is invalid, ctxt-\u003ehstate will be replaced\nwith NULL, losing its previous value, and we will print an error:\n\n ...\n ...\n case Opt_pagesize:\n ps = memparse(param-\u003estring, \u0026rest);\n ctx-\u003ehstate = h;\n if (!ctx-\u003ehstate) {\n         pr_err(\"Unsupported page size %lu MB\\n\", ps / SZ_1M);\n         return -EINVAL;\n }\n return 0;\n ...\n ...\n\nThis is a problem because later on, we will dereference ctxt-\u003ehstate in\nhugetlbfs_fill_super()\n\n ...\n ...\n sb-\u003es_blocksize = huge_page_size(ctx-\u003ehstate);\n ...\n ...\n\nCausing below Oops.\n\nFix this by replacing cxt-\u003ehstate value only when then pagesize is known\nto be valid.\n\n kernel: hugetlbfs: Unsupported page size 0 MB\n kernel: BUG: kernel NULL pointer dereference, address: 0000000000000028\n kernel: #PF: supervisor read access in kernel mode\n kernel: #PF: error_code(0x0000) - not-present page\n kernel: PGD 800000010f66c067 P4D 800000010f66c067 PUD 1b22f8067 PMD 0\n kernel: Oops: 0000 [#1] PREEMPT SMP PTI\n kernel: CPU: 4 PID: 5659 Comm: syscall Tainted: G            E      6.8.0-rc2-default+ #22 5a47c3fef76212addcc6eb71344aabc35190ae8f\n kernel: Hardware name: Intel Corp. GROVEPORT/GROVEPORT, BIOS GVPRCRB1.86B.0016.D04.1705030402 05/03/2017\n kernel: RIP: 0010:hugetlbfs_fill_super+0xb4/0x1a0\n kernel: Code: 48 8b 3b e8 3e c6 ed ff 48 85 c0 48 89 45 20 0f 84 d6 00 00 00 48 b8 ff ff ff ff ff ff ff 7f 4c 89 e7 49 89 44 24 20 48 8b 03 \u003c8b\u003e 48 28 b8 00 10 00 00 48 d3 e0 49 89 44 24 18 48 8b 03 8b 40 28\n kernel: RSP: 0018:ffffbe9960fcbd48 EFLAGS: 00010246\n kernel: RAX: 0000000000000000 RBX: ffff9af5272ae780 RCX: 0000000000372004\n kernel: RDX: ffffffffffffffff RSI: ffffffffffffffff RDI: ffff9af555e9b000\n kernel: RBP: ffff9af52ee66b00 R08: 0000000000000040 R09: 0000000000370004\n kernel: R10: ffffbe9960fcbd48 R11: 0000000000000040 R12: ffff9af555e9b000\n kernel: R13: ffffffffa66b86c0 R14: ffff9af507d2f400 R15: ffff9af507d2f400\n kernel: FS:  00007ffbc0ba4740(0000) GS:ffff9b0bd7000000(0000) knlGS:0000000000000000\n kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n kernel: CR2: 0000000000000028 CR3: 00000001b1ee0000 CR4: 00000000001506f0\n kernel: Call Trace:\n kernel:  \u003cTASK\u003e\n kernel:  ? __die_body+0x1a/0x60\n kernel:  ? page_fault_oops+0x16f/0x4a0\n kernel:  ? search_bpf_extables+0x65/0x70\n kernel:  ? fixup_exception+0x22/0x310\n kernel:  ? exc_page_fault+0x69/0x150\n kernel:  ? asm_exc_page_fault+0x22/0x30\n kernel:  ? __pfx_hugetlbfs_fill_super+0x10/0x10\n kernel:  ? hugetlbfs_fill_super+0xb4/0x1a0\n kernel:  ? hugetlbfs_fill_super+0x28/0x1a0\n kernel:  ? __pfx_hugetlbfs_fill_super+0x10/0x10\n kernel:  vfs_get_super+0x40/0xa0\n kernel:  ? __pfx_bpf_lsm_capable+0x10/0x10\n kernel:  vfs_get_tree+0x25/0xd0\n kernel:  vfs_cmd_create+0x64/0xe0\n kernel:  __x64_sys_fsconfig+0x395/0x410\n kernel:  do_syscall_64+0x80/0x160\n kernel:  ? syscall_exit_to_user_mode+0x82/0x240\n kernel:  ? do_syscall_64+0x8d/0x160\n kernel:  ? syscall_exit_to_user_mode+0x82/0x240\n kernel:  ? do_syscall_64+0x8d/0x160\n kernel:  ? exc_page_fault+0x69/0x150\n kernel:  entry_SYSCALL_64_after_hwframe+0x6e/0x76\n kernel: RIP: 0033:0x7ffbc0cb87c9\n kernel: Code: 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d 97 96 0d 00 f7 d8 64 89 01 48\n kernel: RSP: 002b:00007ffc29d2f388 EFLAGS: 00000206 ORIG_RAX: 00000000000001af\n kernel: RAX: fffffffffff\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:54:06.156Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/1dde8ef4b7a749ae1bc73617c91775631d167557"
        },
        {
          "url": "https://git.kernel.org/stable/c/80d852299987a8037be145a94f41874228f1a773"
        },
        {
          "url": "https://git.kernel.org/stable/c/22850c9950a4e43a67299755d11498f3292d02ff"
        },
        {
          "url": "https://git.kernel.org/stable/c/2e2c07104b4904aed1389a59b25799b95a85b5b9"
        },
        {
          "url": "https://git.kernel.org/stable/c/13c5a9fb07105557a1fa9efdb4f23d7ef30b7274"
        },
        {
          "url": "https://git.kernel.org/stable/c/ec78418801ef7b0c22cd6a30145ec480dd48db39"
        },
        {
          "url": "https://git.kernel.org/stable/c/79d72c68c58784a3e1cd2378669d51bfd0cb7498"
        }
      ],
      "title": "fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26688",
    "datePublished": "2024-04-03T14:54:49.964Z",
    "dateReserved": "2024-02-19T14:20:24.154Z",
    "dateUpdated": "2025-05-04T08:54:06.156Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26702 (GCVE-0-2024-26702)

Vulnerability from cvelistv5

Published

2024-04-03 14:55

Modified

2025-05-04 08:54

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: iio: magnetometer: rm3100: add boundary check for the value read from RM3100_REG_TMRC Recently, we encounter kernel crash in function rm3100_common_probe caused by out of bound access of array rm3100_samp_rates (because of underlying hardware failures). Add boundary check to prevent out of bound access.

References

►

URL

Tags

	https://git.kernel.org/stable/c/7200170e88e3ec54d9e9c63f07514c3cead11481
	https://git.kernel.org/stable/c/36a49290d7e6d554020057a409747a092b1d3b56
	https://git.kernel.org/stable/c/8d5838a473e8e6d812257c69745f5920e4924a60
	https://git.kernel.org/stable/c/176256ff8abff29335ecff905a09fb49e8dcf513
	https://git.kernel.org/stable/c/1d8c67e94e9e977603473a543d4f322cf2c4aa01
	https://git.kernel.org/stable/c/57d05dbbcd0b3dc0c252103b43012eef5d6430d1
	https://git.kernel.org/stable/c/792595bab4925aa06532a14dd256db523eb4fa5e

Impacted products

Vendor

Product

Version

►

Linux

Version: 121354b2eceb2669ebdffa76b105ad6c03413966
Version: 121354b2eceb2669ebdffa76b105ad6c03413966
Version: 121354b2eceb2669ebdffa76b105ad6c03413966
Version: 121354b2eceb2669ebdffa76b105ad6c03413966
Version: 121354b2eceb2669ebdffa76b105ad6c03413966
Version: 121354b2eceb2669ebdffa76b105ad6c03413966
Version: 121354b2eceb2669ebdffa76b105ad6c03413966

Linux

Version: 5.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26702",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-04T15:20:17.184977Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-05T15:06:19.230Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:12.653Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7200170e88e3ec54d9e9c63f07514c3cead11481"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/36a49290d7e6d554020057a409747a092b1d3b56"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8d5838a473e8e6d812257c69745f5920e4924a60"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/176256ff8abff29335ecff905a09fb49e8dcf513"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1d8c67e94e9e977603473a543d4f322cf2c4aa01"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/57d05dbbcd0b3dc0c252103b43012eef5d6430d1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/792595bab4925aa06532a14dd256db523eb4fa5e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/iio/magnetometer/rm3100-core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "7200170e88e3ec54d9e9c63f07514c3cead11481",
              "status": "affected",
              "version": "121354b2eceb2669ebdffa76b105ad6c03413966",
              "versionType": "git"
            },
            {
              "lessThan": "36a49290d7e6d554020057a409747a092b1d3b56",
              "status": "affected",
              "version": "121354b2eceb2669ebdffa76b105ad6c03413966",
              "versionType": "git"
            },
            {
              "lessThan": "8d5838a473e8e6d812257c69745f5920e4924a60",
              "status": "affected",
              "version": "121354b2eceb2669ebdffa76b105ad6c03413966",
              "versionType": "git"
            },
            {
              "lessThan": "176256ff8abff29335ecff905a09fb49e8dcf513",
              "status": "affected",
              "version": "121354b2eceb2669ebdffa76b105ad6c03413966",
              "versionType": "git"
            },
            {
              "lessThan": "1d8c67e94e9e977603473a543d4f322cf2c4aa01",
              "status": "affected",
              "version": "121354b2eceb2669ebdffa76b105ad6c03413966",
              "versionType": "git"
            },
            {
              "lessThan": "57d05dbbcd0b3dc0c252103b43012eef5d6430d1",
              "status": "affected",
              "version": "121354b2eceb2669ebdffa76b105ad6c03413966",
              "versionType": "git"
            },
            {
              "lessThan": "792595bab4925aa06532a14dd256db523eb4fa5e",
              "status": "affected",
              "version": "121354b2eceb2669ebdffa76b105ad6c03413966",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/iio/magnetometer/rm3100-core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.0"
            },
            {
              "lessThan": "5.0",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.269",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.79",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.269",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.79",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\niio: magnetometer: rm3100: add boundary check for the value read from RM3100_REG_TMRC\n\nRecently, we encounter kernel crash in function rm3100_common_probe\ncaused by out of bound access of array rm3100_samp_rates (because of\nunderlying hardware failures). Add boundary check to prevent out of\nbound access."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:54:24.314Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/7200170e88e3ec54d9e9c63f07514c3cead11481"
        },
        {
          "url": "https://git.kernel.org/stable/c/36a49290d7e6d554020057a409747a092b1d3b56"
        },
        {
          "url": "https://git.kernel.org/stable/c/8d5838a473e8e6d812257c69745f5920e4924a60"
        },
        {
          "url": "https://git.kernel.org/stable/c/176256ff8abff29335ecff905a09fb49e8dcf513"
        },
        {
          "url": "https://git.kernel.org/stable/c/1d8c67e94e9e977603473a543d4f322cf2c4aa01"
        },
        {
          "url": "https://git.kernel.org/stable/c/57d05dbbcd0b3dc0c252103b43012eef5d6430d1"
        },
        {
          "url": "https://git.kernel.org/stable/c/792595bab4925aa06532a14dd256db523eb4fa5e"
        }
      ],
      "title": "iio: magnetometer: rm3100: add boundary check for the value read from RM3100_REG_TMRC",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26702",
    "datePublished": "2024-04-03T14:55:01.025Z",
    "dateReserved": "2024-02-19T14:20:24.157Z",
    "dateUpdated": "2025-05-04T08:54:24.314Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26993 (GCVE-0-2024-26993)

Vulnerability from cvelistv5

Published

2024-05-01 05:28

Modified

2025-05-04 12:55

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: fs: sysfs: Fix reference leak in sysfs_break_active_protection() The sysfs_break_active_protection() routine has an obvious reference leak in its error path. If the call to kernfs_find_and_get() fails then kn will be NULL, so the companion sysfs_unbreak_active_protection() routine won't get called (and would only cause an access violation by trying to dereference kn->parent if it was called). As a result, the reference to kobj acquired at the start of the function will never be released. Fix the leak by adding an explicit kobject_put() call when kn is NULL.

References

►

URL

Tags

	https://git.kernel.org/stable/c/f28bba37fe244889b81bb5c508d3f6e5c6e342c5
	https://git.kernel.org/stable/c/57baab0f376bec8f54b0fe6beb8f77a57c228063
	https://git.kernel.org/stable/c/84bd4c2ae9c3d0a7d3a5c032ea7efff17af17e17
	https://git.kernel.org/stable/c/43f00210cb257bcb0387e8caeb4b46375d67f30c
	https://git.kernel.org/stable/c/5d43e072285e81b0b63cee7189b3357c7768a43b
	https://git.kernel.org/stable/c/ac107356aabc362aaeb77463e814fc067a5d3957
	https://git.kernel.org/stable/c/a4c99b57d43bab45225ba92d574a8683f9edc8e4
	https://git.kernel.org/stable/c/a90bca2228c0646fc29a72689d308e5fe03e6d78

Impacted products

Vendor

Product

Version

►

Linux

Version: 2afc9166f79b8f6da5f347f48515215ceee4ae37
Version: 2afc9166f79b8f6da5f347f48515215ceee4ae37
Version: 2afc9166f79b8f6da5f347f48515215ceee4ae37
Version: 2afc9166f79b8f6da5f347f48515215ceee4ae37
Version: 2afc9166f79b8f6da5f347f48515215ceee4ae37
Version: 2afc9166f79b8f6da5f347f48515215ceee4ae37
Version: 2afc9166f79b8f6da5f347f48515215ceee4ae37
Version: 2afc9166f79b8f6da5f347f48515215ceee4ae37
Version: e8a37b2fd5b5087bec6cbbf6946ee3caa712953b
Version: a6abc93760dd07fcd29760b70e6e7520f22cb288
Version: 461a6385e58e8247e6ba2005aa5d1b8d980ee4a2
Version: 8a5e02a0f46ea33ed19e48e096a8e8d28e73d10a
Version: c984f4d1d40a2f349503b3faf946502ccbf02f9f
Version: 807d1d299a04e9ad9a9dac55419c1137a105254b

Linux

Version: 4.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26993",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-01T13:37:12.333218Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:22:44.436Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.900Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f28bba37fe244889b81bb5c508d3f6e5c6e342c5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/57baab0f376bec8f54b0fe6beb8f77a57c228063"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/84bd4c2ae9c3d0a7d3a5c032ea7efff17af17e17"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/43f00210cb257bcb0387e8caeb4b46375d67f30c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5d43e072285e81b0b63cee7189b3357c7768a43b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ac107356aabc362aaeb77463e814fc067a5d3957"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a4c99b57d43bab45225ba92d574a8683f9edc8e4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a90bca2228c0646fc29a72689d308e5fe03e6d78"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/sysfs/file.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f28bba37fe244889b81bb5c508d3f6e5c6e342c5",
              "status": "affected",
              "version": "2afc9166f79b8f6da5f347f48515215ceee4ae37",
              "versionType": "git"
            },
            {
              "lessThan": "57baab0f376bec8f54b0fe6beb8f77a57c228063",
              "status": "affected",
              "version": "2afc9166f79b8f6da5f347f48515215ceee4ae37",
              "versionType": "git"
            },
            {
              "lessThan": "84bd4c2ae9c3d0a7d3a5c032ea7efff17af17e17",
              "status": "affected",
              "version": "2afc9166f79b8f6da5f347f48515215ceee4ae37",
              "versionType": "git"
            },
            {
              "lessThan": "43f00210cb257bcb0387e8caeb4b46375d67f30c",
              "status": "affected",
              "version": "2afc9166f79b8f6da5f347f48515215ceee4ae37",
              "versionType": "git"
            },
            {
              "lessThan": "5d43e072285e81b0b63cee7189b3357c7768a43b",
              "status": "affected",
              "version": "2afc9166f79b8f6da5f347f48515215ceee4ae37",
              "versionType": "git"
            },
            {
              "lessThan": "ac107356aabc362aaeb77463e814fc067a5d3957",
              "status": "affected",
              "version": "2afc9166f79b8f6da5f347f48515215ceee4ae37",
              "versionType": "git"
            },
            {
              "lessThan": "a4c99b57d43bab45225ba92d574a8683f9edc8e4",
              "status": "affected",
              "version": "2afc9166f79b8f6da5f347f48515215ceee4ae37",
              "versionType": "git"
            },
            {
              "lessThan": "a90bca2228c0646fc29a72689d308e5fe03e6d78",
              "status": "affected",
              "version": "2afc9166f79b8f6da5f347f48515215ceee4ae37",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "e8a37b2fd5b5087bec6cbbf6946ee3caa712953b",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "a6abc93760dd07fcd29760b70e6e7520f22cb288",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "461a6385e58e8247e6ba2005aa5d1b8d980ee4a2",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "8a5e02a0f46ea33ed19e48e096a8e8d28e73d10a",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "c984f4d1d40a2f349503b3faf946502ccbf02f9f",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "807d1d299a04e9ad9a9dac55419c1137a105254b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/sysfs/file.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.19"
            },
            {
              "lessThan": "4.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.313",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.275",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.216",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.157",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.88",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.29",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.8",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.313",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.275",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.216",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.157",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.88",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.29",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.8",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "3.16.62",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "3.18.121",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.4.154",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.9.125",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.14.68",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.18.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nfs: sysfs: Fix reference leak in sysfs_break_active_protection()\n\nThe sysfs_break_active_protection() routine has an obvious reference\nleak in its error path.  If the call to kernfs_find_and_get() fails then\nkn will be NULL, so the companion sysfs_unbreak_active_protection()\nroutine won\u0027t get called (and would only cause an access violation by\ntrying to dereference kn-\u003eparent if it was called).  As a result, the\nreference to kobj acquired at the start of the function will never be\nreleased.\n\nFix the leak by adding an explicit kobject_put() call when kn is NULL."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:55:16.847Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f28bba37fe244889b81bb5c508d3f6e5c6e342c5"
        },
        {
          "url": "https://git.kernel.org/stable/c/57baab0f376bec8f54b0fe6beb8f77a57c228063"
        },
        {
          "url": "https://git.kernel.org/stable/c/84bd4c2ae9c3d0a7d3a5c032ea7efff17af17e17"
        },
        {
          "url": "https://git.kernel.org/stable/c/43f00210cb257bcb0387e8caeb4b46375d67f30c"
        },
        {
          "url": "https://git.kernel.org/stable/c/5d43e072285e81b0b63cee7189b3357c7768a43b"
        },
        {
          "url": "https://git.kernel.org/stable/c/ac107356aabc362aaeb77463e814fc067a5d3957"
        },
        {
          "url": "https://git.kernel.org/stable/c/a4c99b57d43bab45225ba92d574a8683f9edc8e4"
        },
        {
          "url": "https://git.kernel.org/stable/c/a90bca2228c0646fc29a72689d308e5fe03e6d78"
        }
      ],
      "title": "fs: sysfs: Fix reference leak in sysfs_break_active_protection()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26993",
    "datePublished": "2024-05-01T05:28:02.462Z",
    "dateReserved": "2024-02-19T14:20:24.206Z",
    "dateUpdated": "2025-05-04T12:55:16.847Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26853 (GCVE-0-2024-26853)

Vulnerability from cvelistv5

Published

2024-04-17 10:17

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: igc: avoid returning frame twice in XDP_REDIRECT When a frame can not be transmitted in XDP_REDIRECT (e.g. due to a full queue), it is necessary to free it by calling xdp_return_frame_rx_napi. However, this is the responsibility of the caller of the ndo_xdp_xmit (see for example bq_xmit_all in kernel/bpf/devmap.c) and thus calling it inside igc_xdp_xmit (which is the ndo_xdp_xmit of the igc driver) as well will lead to memory corruption. In fact, bq_xmit_all expects that it can return all frames after the last successfully transmitted one. Therefore, break for the first not transmitted frame, but do not call xdp_return_frame_rx_napi in igc_xdp_xmit. This is equally implemented in other Intel drivers such as the igb. There are two alternatives to this that were rejected: 1. Return num_frames as all the frames would have been transmitted and release them inside igc_xdp_xmit. While it might work technically, it is not what the return value is meant to represent (i.e. the number of SUCCESSFULLY transmitted packets). 2. Rework kernel/bpf/devmap.c and all drivers to support non-consecutively dropped packets. Besides being complex, it likely has a negative performance impact without a significant gain since it is anyway unlikely that the next frame can be transmitted if the previous one was dropped. The memory corruption can be reproduced with the following script which leads to a kernel panic after a few seconds. It basically generates more traffic than a i225 NIC can transmit and pushes it via XDP_REDIRECT from a virtual interface to the physical interface where frames get dropped. #!/bin/bash INTERFACE=enp4s0 INTERFACE_IDX=`cat /sys/class/net/$INTERFACE/ifindex` sudo ip link add dev veth1 type veth peer name veth2 sudo ip link set up $INTERFACE sudo ip link set up veth1 sudo ip link set up veth2 cat << EOF > redirect.bpf.c SEC("prog") int redirect(struct xdp_md *ctx) { return bpf_redirect($INTERFACE_IDX, 0); } char _license[] SEC("license") = "GPL"; EOF clang -O2 -g -Wall -target bpf -c redirect.bpf.c -o redirect.bpf.o sudo ip link set veth2 xdp obj redirect.bpf.o cat << EOF > pass.bpf.c SEC("prog") int pass(struct xdp_md *ctx) { return XDP_PASS; } char _license[] SEC("license") = "GPL"; EOF clang -O2 -g -Wall -target bpf -c pass.bpf.c -o pass.bpf.o sudo ip link set $INTERFACE xdp obj pass.bpf.o cat << EOF > trafgen.cfg { /* Ethernet Header */ 0xe8, 0x6a, 0x64, 0x41, 0xbf, 0x46, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, const16(ETH_P_IP), /* IPv4 Header */ 0b01000101, 0, # IPv4 version, IHL, TOS const16(1028), # IPv4 total length (UDP length + 20 bytes (IP header)) const16(2), # IPv4 ident 0b01000000, 0, # IPv4 flags, fragmentation off 64, # IPv4 TTL 17, # Protocol UDP csumip(14, 33), # IPv4 checksum /* UDP Header */ 10, 0, 1, 1, # IP Src - adapt as needed 10, 0, 1, 2, # IP Dest - adapt as needed const16(6666), # UDP Src Port const16(6666), # UDP Dest Port const16(1008), # UDP length (UDP header 8 bytes + payload length) csumudp(14, 34), # UDP checksum /* Payload */ fill('W', 1000), } EOF sudo trafgen -i trafgen.cfg -b3000MB -o veth1 --cpp

References

►

URL

Tags

	https://git.kernel.org/stable/c/63a3c1f3c9ecc654d851e7906d05334cd0c236e2
	https://git.kernel.org/stable/c/8df393af9e7e8dfd62e9c41dbaa4d2ff53bf794a
	https://git.kernel.org/stable/c/1b3b8231386a572bac8cd5b6fd7e944b84f9bb1f
	https://git.kernel.org/stable/c/ef27f655b438bed4c83680e4f01e1cde2739854b

Impacted products

Vendor

Product

Version

►

Linux

Version: 4ff3203610928cac82d5627ce803559e78d61b91
Version: 4ff3203610928cac82d5627ce803559e78d61b91
Version: 4ff3203610928cac82d5627ce803559e78d61b91
Version: 4ff3203610928cac82d5627ce803559e78d61b91

Linux

Version: 5.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.713Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/63a3c1f3c9ecc654d851e7906d05334cd0c236e2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8df393af9e7e8dfd62e9c41dbaa4d2ff53bf794a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1b3b8231386a572bac8cd5b6fd7e944b84f9bb1f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ef27f655b438bed4c83680e4f01e1cde2739854b"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26853",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:48:38.543081Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:27.256Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/igc/igc_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "63a3c1f3c9ecc654d851e7906d05334cd0c236e2",
              "status": "affected",
              "version": "4ff3203610928cac82d5627ce803559e78d61b91",
              "versionType": "git"
            },
            {
              "lessThan": "8df393af9e7e8dfd62e9c41dbaa4d2ff53bf794a",
              "status": "affected",
              "version": "4ff3203610928cac82d5627ce803559e78d61b91",
              "versionType": "git"
            },
            {
              "lessThan": "1b3b8231386a572bac8cd5b6fd7e944b84f9bb1f",
              "status": "affected",
              "version": "4ff3203610928cac82d5627ce803559e78d61b91",
              "versionType": "git"
            },
            {
              "lessThan": "ef27f655b438bed4c83680e4f01e1cde2739854b",
              "status": "affected",
              "version": "4ff3203610928cac82d5627ce803559e78d61b91",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/igc/igc_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.13"
            },
            {
              "lessThan": "5.13",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.22",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.10",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.82",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.22",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.10",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nigc: avoid returning frame twice in XDP_REDIRECT\n\nWhen a frame can not be transmitted in XDP_REDIRECT\n(e.g. due to a full queue), it is necessary to free\nit by calling xdp_return_frame_rx_napi.\n\nHowever, this is the responsibility of the caller of\nthe ndo_xdp_xmit (see for example bq_xmit_all in\nkernel/bpf/devmap.c) and thus calling it inside\nigc_xdp_xmit (which is the ndo_xdp_xmit of the igc\ndriver) as well will lead to memory corruption.\n\nIn fact, bq_xmit_all expects that it can return all\nframes after the last successfully transmitted one.\nTherefore, break for the first not transmitted frame,\nbut do not call xdp_return_frame_rx_napi in igc_xdp_xmit.\nThis is equally implemented in other Intel drivers\nsuch as the igb.\n\nThere are two alternatives to this that were rejected:\n1. Return num_frames as all the frames would have been\n   transmitted and release them inside igc_xdp_xmit.\n   While it might work technically, it is not what\n   the return value is meant to represent (i.e. the\n   number of SUCCESSFULLY transmitted packets).\n2. Rework kernel/bpf/devmap.c and all drivers to\n   support non-consecutively dropped packets.\n   Besides being complex, it likely has a negative\n   performance impact without a significant gain\n   since it is anyway unlikely that the next frame\n   can be transmitted if the previous one was dropped.\n\nThe memory corruption can be reproduced with\nthe following script which leads to a kernel panic\nafter a few seconds.  It basically generates more\ntraffic than a i225 NIC can transmit and pushes it\nvia XDP_REDIRECT from a virtual interface to the\nphysical interface where frames get dropped.\n\n   #!/bin/bash\n   INTERFACE=enp4s0\n   INTERFACE_IDX=`cat /sys/class/net/$INTERFACE/ifindex`\n\n   sudo ip link add dev veth1 type veth peer name veth2\n   sudo ip link set up $INTERFACE\n   sudo ip link set up veth1\n   sudo ip link set up veth2\n\n   cat \u003c\u003c EOF \u003e redirect.bpf.c\n\n   SEC(\"prog\")\n   int redirect(struct xdp_md *ctx)\n   {\n       return bpf_redirect($INTERFACE_IDX, 0);\n   }\n\n   char _license[] SEC(\"license\") = \"GPL\";\n   EOF\n   clang -O2 -g -Wall -target bpf -c redirect.bpf.c -o redirect.bpf.o\n   sudo ip link set veth2 xdp obj redirect.bpf.o\n\n   cat \u003c\u003c EOF \u003e pass.bpf.c\n\n   SEC(\"prog\")\n   int pass(struct xdp_md *ctx)\n   {\n       return XDP_PASS;\n   }\n\n   char _license[] SEC(\"license\") = \"GPL\";\n   EOF\n   clang -O2 -g -Wall -target bpf -c pass.bpf.c -o pass.bpf.o\n   sudo ip link set $INTERFACE xdp obj pass.bpf.o\n\n   cat \u003c\u003c EOF \u003e trafgen.cfg\n\n   {\n     /* Ethernet Header */\n     0xe8, 0x6a, 0x64, 0x41, 0xbf, 0x46,\n     0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,\n     const16(ETH_P_IP),\n\n     /* IPv4 Header */\n     0b01000101, 0,   # IPv4 version, IHL, TOS\n     const16(1028),   # IPv4 total length (UDP length + 20 bytes (IP header))\n     const16(2),      # IPv4 ident\n     0b01000000, 0,   # IPv4 flags, fragmentation off\n     64,              # IPv4 TTL\n     17,              # Protocol UDP\n     csumip(14, 33),  # IPv4 checksum\n\n     /* UDP Header */\n     10,  0, 1, 1,    # IP Src - adapt as needed\n     10,  0, 1, 2,    # IP Dest - adapt as needed\n     const16(6666),   # UDP Src Port\n     const16(6666),   # UDP Dest Port\n     const16(1008),   # UDP length (UDP header 8 bytes + payload length)\n     csumudp(14, 34), # UDP checksum\n\n     /* Payload */\n     fill(\u0027W\u0027, 1000),\n   }\n   EOF\n\n   sudo trafgen -i trafgen.cfg -b3000MB -o veth1 --cpp"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:59.924Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/63a3c1f3c9ecc654d851e7906d05334cd0c236e2"
        },
        {
          "url": "https://git.kernel.org/stable/c/8df393af9e7e8dfd62e9c41dbaa4d2ff53bf794a"
        },
        {
          "url": "https://git.kernel.org/stable/c/1b3b8231386a572bac8cd5b6fd7e944b84f9bb1f"
        },
        {
          "url": "https://git.kernel.org/stable/c/ef27f655b438bed4c83680e4f01e1cde2739854b"
        }
      ],
      "title": "igc: avoid returning frame twice in XDP_REDIRECT",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26853",
    "datePublished": "2024-04-17T10:17:16.571Z",
    "dateReserved": "2024-02-19T14:20:24.183Z",
    "dateUpdated": "2025-05-04T08:57:59.924Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47201 (GCVE-0-2021-47201)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: iavf: free q_vectors before queues in iavf_disable_vf iavf_free_queues() clears adapter->num_active_queues, which iavf_free_q_vectors() relies on, so swap the order of these two function calls in iavf_disable_vf(). This resolves a panic encountered when the interface is disabled and then later brought up again after PF communication is restored.

References

►

URL

Tags

	https://git.kernel.org/stable/c/926e8c83d4c1c2dac0026637eb0d492df876489e
	https://git.kernel.org/stable/c/78638b47132244e3934dc5dc79f6372d5ce8e98c
	https://git.kernel.org/stable/c/9ef6589cac9a8c47f5544ccdf4c498093733bb3f
	https://git.kernel.org/stable/c/89f22f129696ab53cfbc608e0a2184d0fea46ac1

Impacted products

Vendor

Product

Version

►

Linux

Version: 65c7006f234c9ede887d468f595f259a5c5cc552
Version: 65c7006f234c9ede887d468f595f259a5c5cc552
Version: 65c7006f234c9ede887d468f595f259a5c5cc552
Version: 65c7006f234c9ede887d468f595f259a5c5cc552

Linux

Version: 4.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47201",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-10T19:51:02.253151Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:14:25.949Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.396Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/926e8c83d4c1c2dac0026637eb0d492df876489e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/78638b47132244e3934dc5dc79f6372d5ce8e98c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9ef6589cac9a8c47f5544ccdf4c498093733bb3f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/89f22f129696ab53cfbc608e0a2184d0fea46ac1"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/iavf/iavf_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "926e8c83d4c1c2dac0026637eb0d492df876489e",
              "status": "affected",
              "version": "65c7006f234c9ede887d468f595f259a5c5cc552",
              "versionType": "git"
            },
            {
              "lessThan": "78638b47132244e3934dc5dc79f6372d5ce8e98c",
              "status": "affected",
              "version": "65c7006f234c9ede887d468f595f259a5c5cc552",
              "versionType": "git"
            },
            {
              "lessThan": "9ef6589cac9a8c47f5544ccdf4c498093733bb3f",
              "status": "affected",
              "version": "65c7006f234c9ede887d468f595f259a5c5cc552",
              "versionType": "git"
            },
            {
              "lessThan": "89f22f129696ab53cfbc608e0a2184d0fea46ac1",
              "status": "affected",
              "version": "65c7006f234c9ede887d468f595f259a5c5cc552",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/iavf/iavf_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.13"
            },
            {
              "lessThan": "4.13",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "versionStartIncluding": "4.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "4.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "4.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "4.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\niavf: free q_vectors before queues in iavf_disable_vf\n\niavf_free_queues() clears adapter-\u003enum_active_queues, which\niavf_free_q_vectors() relies on, so swap the order of these two function\ncalls in iavf_disable_vf(). This resolves a panic encountered when the\ninterface is disabled and then later brought up again after PF\ncommunication is restored."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:16.818Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/926e8c83d4c1c2dac0026637eb0d492df876489e"
        },
        {
          "url": "https://git.kernel.org/stable/c/78638b47132244e3934dc5dc79f6372d5ce8e98c"
        },
        {
          "url": "https://git.kernel.org/stable/c/9ef6589cac9a8c47f5544ccdf4c498093733bb3f"
        },
        {
          "url": "https://git.kernel.org/stable/c/89f22f129696ab53cfbc608e0a2184d0fea46ac1"
        }
      ],
      "title": "iavf: free q_vectors before queues in iavf_disable_vf",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47201",
    "datePublished": "2024-04-10T18:56:35.774Z",
    "dateReserved": "2024-03-25T09:12:14.117Z",
    "dateUpdated": "2025-05-04T07:06:16.818Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48654 (GCVE-0-2022-48654)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 08:20

Severity ?

5.3 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Summary

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find() nf_osf_find() incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nft_osf which can be used to leak stale kernel stack data to userspace.

References

►

URL

Tags

	https://git.kernel.org/stable/c/721ea8ac063d70c2078c4e762212705de6151764
	https://git.kernel.org/stable/c/5d75fef3e61e797fab5c3fbba88caa74ab92ad47
	https://git.kernel.org/stable/c/816eab147e5c6f6621922b8515ad9010ceb1735e
	https://git.kernel.org/stable/c/633c81c0449663f57d4138326d036dc6cfad674e
	https://git.kernel.org/stable/c/559c36c5a8d730c49ef805a72b213d3bba155cc8

Impacted products

Vendor

Product

Version

►

Linux

Version: 22c7652cdaa8cd33ce78bacceb4e826a3f795873
Version: 22c7652cdaa8cd33ce78bacceb4e826a3f795873
Version: 22c7652cdaa8cd33ce78bacceb4e826a3f795873
Version: 22c7652cdaa8cd33ce78bacceb4e826a3f795873
Version: 22c7652cdaa8cd33ce78bacceb4e826a3f795873

Linux

Version: 5.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "LOW",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48654",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-16T20:35:56.717348Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T15:43:45.122Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.613Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/721ea8ac063d70c2078c4e762212705de6151764"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5d75fef3e61e797fab5c3fbba88caa74ab92ad47"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/816eab147e5c6f6621922b8515ad9010ceb1735e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/633c81c0449663f57d4138326d036dc6cfad674e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/559c36c5a8d730c49ef805a72b213d3bba155cc8"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/netfilter/nfnetlink_osf.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "721ea8ac063d70c2078c4e762212705de6151764",
              "status": "affected",
              "version": "22c7652cdaa8cd33ce78bacceb4e826a3f795873",
              "versionType": "git"
            },
            {
              "lessThan": "5d75fef3e61e797fab5c3fbba88caa74ab92ad47",
              "status": "affected",
              "version": "22c7652cdaa8cd33ce78bacceb4e826a3f795873",
              "versionType": "git"
            },
            {
              "lessThan": "816eab147e5c6f6621922b8515ad9010ceb1735e",
              "status": "affected",
              "version": "22c7652cdaa8cd33ce78bacceb4e826a3f795873",
              "versionType": "git"
            },
            {
              "lessThan": "633c81c0449663f57d4138326d036dc6cfad674e",
              "status": "affected",
              "version": "22c7652cdaa8cd33ce78bacceb4e826a3f795873",
              "versionType": "git"
            },
            {
              "lessThan": "559c36c5a8d730c49ef805a72b213d3bba155cc8",
              "status": "affected",
              "version": "22c7652cdaa8cd33ce78bacceb4e826a3f795873",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/netfilter/nfnetlink_osf.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.2"
            },
            {
              "lessThan": "5.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()\n\nnf_osf_find() incorrectly returns true on mismatch, this leads to\ncopying uninitialized memory area in nft_osf which can be used to leak\nstale kernel stack data to userspace."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:39.054Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/721ea8ac063d70c2078c4e762212705de6151764"
        },
        {
          "url": "https://git.kernel.org/stable/c/5d75fef3e61e797fab5c3fbba88caa74ab92ad47"
        },
        {
          "url": "https://git.kernel.org/stable/c/816eab147e5c6f6621922b8515ad9010ceb1735e"
        },
        {
          "url": "https://git.kernel.org/stable/c/633c81c0449663f57d4138326d036dc6cfad674e"
        },
        {
          "url": "https://git.kernel.org/stable/c/559c36c5a8d730c49ef805a72b213d3bba155cc8"
        }
      ],
      "title": "netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48654",
    "datePublished": "2024-04-28T13:00:56.564Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:39.054Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48646 (GCVE-0-2022-48646)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 08:20

Severity ?

6.2 (Medium) - CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: sfc/siena: fix null pointer dereference in efx_hard_start_xmit Like in previous patch for sfc, prevent potential (but unlikely) NULL pointer dereference.

References

►

URL

Tags

	https://git.kernel.org/stable/c/a4eadca702dff0768dd01be6789bbec2a18e5b0a
	https://git.kernel.org/stable/c/589c6eded10c77a12b7b2cf235b6b19a2bdb91fa

Impacted products

Vendor

Product

Version

►

Linux

Version: 12804793b17c0e19115a90d98f2f3df0cb79e233
Version: 12804793b17c0e19115a90d98f2f3df0cb79e233

Linux

Version: 5.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 6.2,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48646",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-29T13:16:31.955526Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-476",
                "description": "CWE-476 NULL Pointer Dereference",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-20T14:41:32.179Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.575Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a4eadca702dff0768dd01be6789bbec2a18e5b0a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/589c6eded10c77a12b7b2cf235b6b19a2bdb91fa"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/sfc/siena/tx.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a4eadca702dff0768dd01be6789bbec2a18e5b0a",
              "status": "affected",
              "version": "12804793b17c0e19115a90d98f2f3df0cb79e233",
              "versionType": "git"
            },
            {
              "lessThan": "589c6eded10c77a12b7b2cf235b6b19a2bdb91fa",
              "status": "affected",
              "version": "12804793b17c0e19115a90d98f2f3df0cb79e233",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/sfc/siena/tx.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc/siena: fix null pointer dereference in efx_hard_start_xmit\n\nLike in previous patch for sfc, prevent potential (but unlikely) NULL\npointer dereference."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:24.626Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a4eadca702dff0768dd01be6789bbec2a18e5b0a"
        },
        {
          "url": "https://git.kernel.org/stable/c/589c6eded10c77a12b7b2cf235b6b19a2bdb91fa"
        }
      ],
      "title": "sfc/siena: fix null pointer dereference in efx_hard_start_xmit",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48646",
    "datePublished": "2024-04-28T13:00:15.604Z",
    "dateReserved": "2024-02-25T13:44:28.316Z",
    "dateUpdated": "2025-05-04T08:20:24.626Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27389 (GCVE-0-2024-27389)

Vulnerability from cvelistv5

Published

2024-05-01 13:05

Modified

2025-05-04 09:03

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: pstore: inode: Only d_invalidate() is needed Unloading a modular pstore backend with records in pstorefs would trigger the dput() double-drop warning: WARNING: CPU: 0 PID: 2569 at fs/dcache.c:762 dput.part.0+0x3f3/0x410 Using the combo of d_drop()/dput() (as mentioned in Documentation/filesystems/vfs.rst) isn't the right approach here, and leads to the reference counting problem seen above. Use d_invalidate() and update the code to not bother checking for error codes that can never happen. ---

References

►

URL

Tags

	https://git.kernel.org/stable/c/db6e5e16f1ee9e3b01d2f71c7f0ba945f4bf0f4e
	https://git.kernel.org/stable/c/4cdf9006fc095af71da80e9b5f48a32e991b9ed3
	https://git.kernel.org/stable/c/cb9e802e49c24eeb3af35e9e8c04d526f35f112a
	https://git.kernel.org/stable/c/340682ed1932b8e3bd0bfc6c31a0c6354eb57cc6
	https://git.kernel.org/stable/c/a43e0fc5e9134a46515de2f2f8d4100b74e50de3

Impacted products

Vendor

Product

Version

►

Linux

Version: 609e28bb139e53621521130f0d4aea27a725d465
Version: 609e28bb139e53621521130f0d4aea27a725d465
Version: 609e28bb139e53621521130f0d4aea27a725d465
Version: 609e28bb139e53621521130f0d4aea27a725d465
Version: 609e28bb139e53621521130f0d4aea27a725d465

Linux

Version: 5.8

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27389",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:38:29.598548Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:22:49.585Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:34:52.207Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/db6e5e16f1ee9e3b01d2f71c7f0ba945f4bf0f4e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4cdf9006fc095af71da80e9b5f48a32e991b9ed3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cb9e802e49c24eeb3af35e9e8c04d526f35f112a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/340682ed1932b8e3bd0bfc6c31a0c6354eb57cc6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a43e0fc5e9134a46515de2f2f8d4100b74e50de3"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/pstore/inode.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "db6e5e16f1ee9e3b01d2f71c7f0ba945f4bf0f4e",
              "status": "affected",
              "version": "609e28bb139e53621521130f0d4aea27a725d465",
              "versionType": "git"
            },
            {
              "lessThan": "4cdf9006fc095af71da80e9b5f48a32e991b9ed3",
              "status": "affected",
              "version": "609e28bb139e53621521130f0d4aea27a725d465",
              "versionType": "git"
            },
            {
              "lessThan": "cb9e802e49c24eeb3af35e9e8c04d526f35f112a",
              "status": "affected",
              "version": "609e28bb139e53621521130f0d4aea27a725d465",
              "versionType": "git"
            },
            {
              "lessThan": "340682ed1932b8e3bd0bfc6c31a0c6354eb57cc6",
              "status": "affected",
              "version": "609e28bb139e53621521130f0d4aea27a725d465",
              "versionType": "git"
            },
            {
              "lessThan": "a43e0fc5e9134a46515de2f2f8d4100b74e50de3",
              "status": "affected",
              "version": "609e28bb139e53621521130f0d4aea27a725d465",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/pstore/inode.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.8"
            },
            {
              "lessThan": "5.8",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npstore: inode: Only d_invalidate() is needed\n\nUnloading a modular pstore backend with records in pstorefs would\ntrigger the dput() double-drop warning:\n\n  WARNING: CPU: 0 PID: 2569 at fs/dcache.c:762 dput.part.0+0x3f3/0x410\n\nUsing the combo of d_drop()/dput() (as mentioned in\nDocumentation/filesystems/vfs.rst) isn\u0027t the right approach here, and\nleads to the reference counting problem seen above. Use d_invalidate()\nand update the code to not bother checking for error codes that can\nnever happen.\n\n---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:03:55.921Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/db6e5e16f1ee9e3b01d2f71c7f0ba945f4bf0f4e"
        },
        {
          "url": "https://git.kernel.org/stable/c/4cdf9006fc095af71da80e9b5f48a32e991b9ed3"
        },
        {
          "url": "https://git.kernel.org/stable/c/cb9e802e49c24eeb3af35e9e8c04d526f35f112a"
        },
        {
          "url": "https://git.kernel.org/stable/c/340682ed1932b8e3bd0bfc6c31a0c6354eb57cc6"
        },
        {
          "url": "https://git.kernel.org/stable/c/a43e0fc5e9134a46515de2f2f8d4100b74e50de3"
        }
      ],
      "title": "pstore: inode: Only d_invalidate() is needed",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27389",
    "datePublished": "2024-05-01T13:05:09.224Z",
    "dateReserved": "2024-02-25T13:47:42.676Z",
    "dateUpdated": "2025-05-04T09:03:55.921Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26915 (GCVE-0-2024-26915)

Vulnerability from cvelistv5

Published

2024-04-17 15:59

Modified

2025-05-04 08:59

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Reset IH OVERFLOW_CLEAR bit Allows us to detect subsequent IH ring buffer overflows as well.

References

►

URL

Tags

	https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1
	https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2
	https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70
	https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d
	https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26915",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-07T20:53:44.445859Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-06T16:17:08.097Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.445Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdgpu/cik_ih.c",
            "drivers/gpu/drm/amd/amdgpu/cz_ih.c",
            "drivers/gpu/drm/amd/amdgpu/iceland_ih.c",
            "drivers/gpu/drm/amd/amdgpu/ih_v6_0.c",
            "drivers/gpu/drm/amd/amdgpu/ih_v6_1.c",
            "drivers/gpu/drm/amd/amdgpu/navi10_ih.c",
            "drivers/gpu/drm/amd/amdgpu/si_ih.c",
            "drivers/gpu/drm/amd/amdgpu/tonga_ih.c",
            "drivers/gpu/drm/amd/amdgpu/vega10_ih.c",
            "drivers/gpu/drm/amd/amdgpu/vega20_ih.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "a28f4d1e0bed85943d309ac243fd1c200f8af9a2",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "8983397951b4b0bd51bb4b4ba9749424e1ccbb70",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "2827633c9dab6304ec4cdbf369363219832e605d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "7330256268664ea0a7dd5b07a3fed363093477dd",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdgpu/cik_ih.c",
            "drivers/gpu/drm/amd/amdgpu/cz_ih.c",
            "drivers/gpu/drm/amd/amdgpu/iceland_ih.c",
            "drivers/gpu/drm/amd/amdgpu/ih_v6_0.c",
            "drivers/gpu/drm/amd/amdgpu/ih_v6_1.c",
            "drivers/gpu/drm/amd/amdgpu/navi10_ih.c",
            "drivers/gpu/drm/amd/amdgpu/si_ih.c",
            "drivers/gpu/drm/amd/amdgpu/tonga_ih.c",
            "drivers/gpu/drm/amd/amdgpu/vega10_ih.c",
            "drivers/gpu/drm/amd/amdgpu/vega20_ih.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.152",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.152",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.82",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Reset IH OVERFLOW_CLEAR bit\n\nAllows us to detect subsequent IH ring buffer overflows as well."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:59:31.250Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/9a9d00c23d170d4ef5a1b28e6b69f5c85dd12bc1"
        },
        {
          "url": "https://git.kernel.org/stable/c/a28f4d1e0bed85943d309ac243fd1c200f8af9a2"
        },
        {
          "url": "https://git.kernel.org/stable/c/8983397951b4b0bd51bb4b4ba9749424e1ccbb70"
        },
        {
          "url": "https://git.kernel.org/stable/c/2827633c9dab6304ec4cdbf369363219832e605d"
        },
        {
          "url": "https://git.kernel.org/stable/c/7330256268664ea0a7dd5b07a3fed363093477dd"
        }
      ],
      "title": "drm/amdgpu: Reset IH OVERFLOW_CLEAR bit",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26915",
    "datePublished": "2024-04-17T15:59:25.079Z",
    "dateReserved": "2024-02-19T14:20:24.193Z",
    "dateUpdated": "2025-05-04T08:59:31.250Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48694 (GCVE-0-2022-48694)

Vulnerability from cvelistv5

Published

2024-05-03 15:06

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix drain SQ hang with no completion SW generated completions for outstanding WRs posted on SQ after QP is in error target the wrong CQ. This causes the ib_drain_sq to hang with no completion. Fix this to generate completions on the right CQ. [ 863.969340] INFO: task kworker/u52:2:671 blocked for more than 122 seconds. [ 863.979224] Not tainted 5.14.0-130.el9.x86_64 #1 [ 863.986588] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 863.996997] task:kworker/u52:2 state:D stack: 0 pid: 671 ppid: 2 flags:0x00004000 [ 864.007272] Workqueue: xprtiod xprt_autoclose [sunrpc] [ 864.014056] Call Trace: [ 864.017575] __schedule+0x206/0x580 [ 864.022296] schedule+0x43/0xa0 [ 864.026736] schedule_timeout+0x115/0x150 [ 864.032185] __wait_for_common+0x93/0x1d0 [ 864.037717] ? usleep_range_state+0x90/0x90 [ 864.043368] __ib_drain_sq+0xf6/0x170 [ib_core] [ 864.049371] ? __rdma_block_iter_next+0x80/0x80 [ib_core] [ 864.056240] ib_drain_sq+0x66/0x70 [ib_core] [ 864.062003] rpcrdma_xprt_disconnect+0x82/0x3b0 [rpcrdma] [ 864.069365] ? xprt_prepare_transmit+0x5d/0xc0 [sunrpc] [ 864.076386] xprt_rdma_close+0xe/0x30 [rpcrdma] [ 864.082593] xprt_autoclose+0x52/0x100 [sunrpc] [ 864.088718] process_one_work+0x1e8/0x3c0 [ 864.094170] worker_thread+0x50/0x3b0 [ 864.099109] ? rescuer_thread+0x370/0x370 [ 864.104473] kthread+0x149/0x170 [ 864.109022] ? set_kthread_struct+0x40/0x40 [ 864.114713] ret_from_fork+0x22/0x30

References

►

URL

Tags

	https://git.kernel.org/stable/c/14d148401c5202fec3a071e24785481d540b22c3
	https://git.kernel.org/stable/c/5becc531a3fa8da75158a8993f56cc3e0717716e
	https://git.kernel.org/stable/c/ead54ced6321099978d30d62dc49c282a6e70574

Impacted products

Vendor

Product

Version

►

Linux

Version: bd2af69575f518a34a941b6b46882c7e2f43e8a2
Version: 81091d7696ae71627ff80bbf2c6b0986d2c1cce3
Version: 81091d7696ae71627ff80bbf2c6b0986d2c1cce3

Linux

Version: 5.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48694",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-31T18:54:53.615962Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:41.631Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.810Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/14d148401c5202fec3a071e24785481d540b22c3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5becc531a3fa8da75158a8993f56cc3e0717716e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ead54ced6321099978d30d62dc49c282a6e70574"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/hw/irdma/utils.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "14d148401c5202fec3a071e24785481d540b22c3",
              "status": "affected",
              "version": "bd2af69575f518a34a941b6b46882c7e2f43e8a2",
              "versionType": "git"
            },
            {
              "lessThan": "5becc531a3fa8da75158a8993f56cc3e0717716e",
              "status": "affected",
              "version": "81091d7696ae71627ff80bbf2c6b0986d2c1cce3",
              "versionType": "git"
            },
            {
              "lessThan": "ead54ced6321099978d30d62dc49c282a6e70574",
              "status": "affected",
              "version": "81091d7696ae71627ff80bbf2c6b0986d2c1cce3",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/hw/irdma/utils.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.19"
            },
            {
              "lessThan": "5.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/irdma: Fix drain SQ hang with no completion\n\nSW generated completions for outstanding WRs posted on SQ\nafter QP is in error target the wrong CQ. This causes the\nib_drain_sq to hang with no completion.\n\nFix this to generate completions on the right CQ.\n\n[  863.969340] INFO: task kworker/u52:2:671 blocked for more than 122 seconds.\n[  863.979224]       Not tainted 5.14.0-130.el9.x86_64 #1\n[  863.986588] \"echo 0 \u003e /proc/sys/kernel/hung_task_timeout_secs\" disables this message.\n[  863.996997] task:kworker/u52:2   state:D stack:    0 pid:  671 ppid:     2 flags:0x00004000\n[  864.007272] Workqueue: xprtiod xprt_autoclose [sunrpc]\n[  864.014056] Call Trace:\n[  864.017575]  __schedule+0x206/0x580\n[  864.022296]  schedule+0x43/0xa0\n[  864.026736]  schedule_timeout+0x115/0x150\n[  864.032185]  __wait_for_common+0x93/0x1d0\n[  864.037717]  ? usleep_range_state+0x90/0x90\n[  864.043368]  __ib_drain_sq+0xf6/0x170 [ib_core]\n[  864.049371]  ? __rdma_block_iter_next+0x80/0x80 [ib_core]\n[  864.056240]  ib_drain_sq+0x66/0x70 [ib_core]\n[  864.062003]  rpcrdma_xprt_disconnect+0x82/0x3b0 [rpcrdma]\n[  864.069365]  ? xprt_prepare_transmit+0x5d/0xc0 [sunrpc]\n[  864.076386]  xprt_rdma_close+0xe/0x30 [rpcrdma]\n[  864.082593]  xprt_autoclose+0x52/0x100 [sunrpc]\n[  864.088718]  process_one_work+0x1e8/0x3c0\n[  864.094170]  worker_thread+0x50/0x3b0\n[  864.099109]  ? rescuer_thread+0x370/0x370\n[  864.104473]  kthread+0x149/0x170\n[  864.109022]  ? set_kthread_struct+0x40/0x40\n[  864.114713]  ret_from_fork+0x22/0x30"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:13.137Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/14d148401c5202fec3a071e24785481d540b22c3"
        },
        {
          "url": "https://git.kernel.org/stable/c/5becc531a3fa8da75158a8993f56cc3e0717716e"
        },
        {
          "url": "https://git.kernel.org/stable/c/ead54ced6321099978d30d62dc49c282a6e70574"
        }
      ],
      "title": "RDMA/irdma: Fix drain SQ hang with no completion",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48694",
    "datePublished": "2024-05-03T15:06:57.588Z",
    "dateReserved": "2024-05-03T14:55:07.145Z",
    "dateUpdated": "2025-05-04T08:21:13.137Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47204 (GCVE-0-2021-47204)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove Access to netdev after free_netdev() will cause use-after-free bug. Move debug log before free_netdev() call to avoid it.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d74ff10ed2d93dc9b67e99a74b36fb9a83273d8a
	https://git.kernel.org/stable/c/1c4099dc0d6a01e76e4f7dd98e4b3e0d55d80ad9
	https://git.kernel.org/stable/c/32d4686224744819ddcae58b666c21d2a4ef4c88
	https://git.kernel.org/stable/c/9b5a333272a48c2f8b30add7a874e46e8b26129c

Impacted products

Vendor

Product

Version

►

Linux

Version: 7472dd9f649958be6a8880ed439233c8414a7b34
Version: 7472dd9f649958be6a8880ed439233c8414a7b34
Version: 7472dd9f649958be6a8880ed439233c8414a7b34
Version: 7472dd9f649958be6a8880ed439233c8414a7b34

Linux

Version: 4.17

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47204",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-15T15:00:02.586260Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-03T17:46:45.048Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.198Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d74ff10ed2d93dc9b67e99a74b36fb9a83273d8a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1c4099dc0d6a01e76e4f7dd98e4b3e0d55d80ad9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/32d4686224744819ddcae58b666c21d2a4ef4c88"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9b5a333272a48c2f8b30add7a874e46e8b26129c"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/freescale/dpaa2/dpaa2-eth.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d74ff10ed2d93dc9b67e99a74b36fb9a83273d8a",
              "status": "affected",
              "version": "7472dd9f649958be6a8880ed439233c8414a7b34",
              "versionType": "git"
            },
            {
              "lessThan": "1c4099dc0d6a01e76e4f7dd98e4b3e0d55d80ad9",
              "status": "affected",
              "version": "7472dd9f649958be6a8880ed439233c8414a7b34",
              "versionType": "git"
            },
            {
              "lessThan": "32d4686224744819ddcae58b666c21d2a4ef4c88",
              "status": "affected",
              "version": "7472dd9f649958be6a8880ed439233c8414a7b34",
              "versionType": "git"
            },
            {
              "lessThan": "9b5a333272a48c2f8b30add7a874e46e8b26129c",
              "status": "affected",
              "version": "7472dd9f649958be6a8880ed439233c8414a7b34",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/freescale/dpaa2/dpaa2-eth.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.17"
            },
            {
              "lessThan": "4.17",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "versionStartIncluding": "4.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "4.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "4.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "4.17",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: dpaa2-eth: fix use-after-free in dpaa2_eth_remove\n\nAccess to netdev after free_netdev() will cause use-after-free bug.\nMove debug log before free_netdev() call to avoid it."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:20.707Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d74ff10ed2d93dc9b67e99a74b36fb9a83273d8a"
        },
        {
          "url": "https://git.kernel.org/stable/c/1c4099dc0d6a01e76e4f7dd98e4b3e0d55d80ad9"
        },
        {
          "url": "https://git.kernel.org/stable/c/32d4686224744819ddcae58b666c21d2a4ef4c88"
        },
        {
          "url": "https://git.kernel.org/stable/c/9b5a333272a48c2f8b30add7a874e46e8b26129c"
        }
      ],
      "title": "net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47204",
    "datePublished": "2024-04-10T18:56:37.703Z",
    "dateReserved": "2024-03-25T09:12:14.117Z",
    "dateUpdated": "2025-05-04T07:06:20.707Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47197 (GCVE-0-2021-47197)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 12:41

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: nullify cq->dbg pointer in mlx5_debug_cq_remove() Prior to this patch in case mlx5_core_destroy_cq() failed it proceeds to rest of destroy operations. mlx5_core_destroy_cq() could be called again by user and cause additional call of mlx5_debug_cq_remove(). cq->dbg was not nullify in previous call and cause the crash. Fix it by nullify cq->dbg pointer after removal. Also proceed to destroy operations only if FW return 0 for MLX5_CMD_OP_DESTROY_CQ command. general protection fault, probably for non-canonical address 0x2000300004058: 0000 [#1] SMP PTI CPU: 5 PID: 1228 Comm: python Not tainted 5.15.0-rc5_for_upstream_min_debug_2021_10_14_11_06 #1 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014 RIP: 0010:lockref_get+0x1/0x60 Code: 5d e9 53 ff ff ff 48 8d 7f 70 e8 0a 2e 48 00 c7 85 d0 00 00 00 02 00 00 00 c6 45 70 00 fb 5d c3 c3 cc cc cc cc cc cc cc cc 53 <48> 8b 17 48 89 fb 85 d2 75 3d 48 89 d0 bf 64 00 00 00 48 89 c1 48 RSP: 0018:ffff888137dd7a38 EFLAGS: 00010206 RAX: 0000000000000000 RBX: ffff888107d5f458 RCX: 00000000fffffffe RDX: 000000000002c2b0 RSI: ffffffff8155e2e0 RDI: 0002000300004058 RBP: ffff888137dd7a88 R08: 0002000300004058 R09: ffff8881144a9f88 R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881141d4000 R13: ffff888137dd7c68 R14: ffff888137dd7d58 R15: ffff888137dd7cc0 FS: 00007f4644f2a4c0(0000) GS:ffff8887a2d40000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 000055b4500f4380 CR3: 0000000114f7a003 CR4: 0000000000170ea0 Call Trace: simple_recursive_removal+0x33/0x2e0 ? debugfs_remove+0x60/0x60 debugfs_remove+0x40/0x60 mlx5_debug_cq_remove+0x32/0x70 [mlx5_core] mlx5_core_destroy_cq+0x41/0x1d0 [mlx5_core] devx_obj_cleanup+0x151/0x330 [mlx5_ib] ? __pollwait+0xd0/0xd0 ? xas_load+0x5/0x70 ? xa_load+0x62/0xa0 destroy_hw_idr_uobject+0x20/0x80 [ib_uverbs] uverbs_destroy_uobject+0x3b/0x360 [ib_uverbs] uobj_destroy+0x54/0xa0 [ib_uverbs] ib_uverbs_cmd_verbs+0xaf2/0x1160 [ib_uverbs] ? uverbs_finalize_object+0xd0/0xd0 [ib_uverbs] ib_uverbs_ioctl+0xc4/0x1b0 [ib_uverbs] __x64_sys_ioctl+0x3e4/0x8e0

References

►

URL

Tags

	https://git.kernel.org/stable/c/471c492890557bd58f73314bb4ad85d5a8fd5026
	https://git.kernel.org/stable/c/2ae38157080616a13a9fe3f0b4b6ec0070aa408a
	https://git.kernel.org/stable/c/76ded29d3fcda4928da8849ffc446ea46871c1c2

Impacted products

Vendor

Product

Version

►

Linux

Version: 4f7bddf8c5c01cac74373443b13a68e1c6723a94
Version: 94b960b9deffc02fc0747afc01f72cc62ab099e3
Version: 94b960b9deffc02fc0747afc01f72cc62ab099e3
Version: ed8aafea4fec9c654e63445236e0b505e27ed3a7

Linux

Version: 5.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47197",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-21T16:04:48.403112Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-21T16:04:55.421Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.338Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/471c492890557bd58f73314bb4ad85d5a8fd5026"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2ae38157080616a13a9fe3f0b4b6ec0070aa408a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/76ded29d3fcda4928da8849ffc446ea46871c1c2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/cq.c",
            "drivers/net/ethernet/mellanox/mlx5/core/debugfs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "471c492890557bd58f73314bb4ad85d5a8fd5026",
              "status": "affected",
              "version": "4f7bddf8c5c01cac74373443b13a68e1c6723a94",
              "versionType": "git"
            },
            {
              "lessThan": "2ae38157080616a13a9fe3f0b4b6ec0070aa408a",
              "status": "affected",
              "version": "94b960b9deffc02fc0747afc01f72cc62ab099e3",
              "versionType": "git"
            },
            {
              "lessThan": "76ded29d3fcda4928da8849ffc446ea46871c1c2",
              "status": "affected",
              "version": "94b960b9deffc02fc0747afc01f72cc62ab099e3",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "ed8aafea4fec9c654e63445236e0b505e27ed3a7",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/cq.c",
            "drivers/net/ethernet/mellanox/mlx5/core/debugfs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.15"
            },
            {
              "lessThan": "5.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "5.10.75",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.14.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: nullify cq-\u003edbg pointer in mlx5_debug_cq_remove()\n\nPrior to this patch in case mlx5_core_destroy_cq() failed it proceeds\nto rest of destroy operations. mlx5_core_destroy_cq() could be called again\nby user and cause additional call of mlx5_debug_cq_remove().\ncq-\u003edbg was not nullify in previous call and cause the crash.\n\nFix it by nullify cq-\u003edbg pointer after removal.\n\nAlso proceed to destroy operations only if FW return 0\nfor MLX5_CMD_OP_DESTROY_CQ command.\n\ngeneral protection fault, probably for non-canonical address 0x2000300004058: 0000 [#1] SMP PTI\nCPU: 5 PID: 1228 Comm: python Not tainted 5.15.0-rc5_for_upstream_min_debug_2021_10_14_11_06 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nRIP: 0010:lockref_get+0x1/0x60\nCode: 5d e9 53 ff ff ff 48 8d 7f 70 e8 0a 2e 48 00 c7 85 d0 00 00 00 02\n00 00 00 c6 45 70 00 fb 5d c3 c3 cc cc cc cc cc cc cc cc 53 \u003c48\u003e 8b 17\n48 89 fb 85 d2 75 3d 48 89 d0 bf 64 00 00 00 48 89 c1 48\nRSP: 0018:ffff888137dd7a38 EFLAGS: 00010206\nRAX: 0000000000000000 RBX: ffff888107d5f458 RCX: 00000000fffffffe\nRDX: 000000000002c2b0 RSI: ffffffff8155e2e0 RDI: 0002000300004058\nRBP: ffff888137dd7a88 R08: 0002000300004058 R09: ffff8881144a9f88\nR10: 0000000000000000 R11: 0000000000000000 R12: ffff8881141d4000\nR13: ffff888137dd7c68 R14: ffff888137dd7d58 R15: ffff888137dd7cc0\nFS:  00007f4644f2a4c0(0000) GS:ffff8887a2d40000(0000)\nknlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 000055b4500f4380 CR3: 0000000114f7a003 CR4: 0000000000170ea0\nCall Trace:\n  simple_recursive_removal+0x33/0x2e0\n  ? debugfs_remove+0x60/0x60\n  debugfs_remove+0x40/0x60\n  mlx5_debug_cq_remove+0x32/0x70 [mlx5_core]\n  mlx5_core_destroy_cq+0x41/0x1d0 [mlx5_core]\n  devx_obj_cleanup+0x151/0x330 [mlx5_ib]\n  ? __pollwait+0xd0/0xd0\n  ? xas_load+0x5/0x70\n  ? xa_load+0x62/0xa0\n  destroy_hw_idr_uobject+0x20/0x80 [ib_uverbs]\n  uverbs_destroy_uobject+0x3b/0x360 [ib_uverbs]\n  uobj_destroy+0x54/0xa0 [ib_uverbs]\n  ib_uverbs_cmd_verbs+0xaf2/0x1160 [ib_uverbs]\n  ? uverbs_finalize_object+0xd0/0xd0 [ib_uverbs]\n  ib_uverbs_ioctl+0xc4/0x1b0 [ib_uverbs]\n  __x64_sys_ioctl+0x3e4/0x8e0"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:41:15.139Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/471c492890557bd58f73314bb4ad85d5a8fd5026"
        },
        {
          "url": "https://git.kernel.org/stable/c/2ae38157080616a13a9fe3f0b4b6ec0070aa408a"
        },
        {
          "url": "https://git.kernel.org/stable/c/76ded29d3fcda4928da8849ffc446ea46871c1c2"
        }
      ],
      "title": "net/mlx5e: nullify cq-\u003edbg pointer in mlx5_debug_cq_remove()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47197",
    "datePublished": "2024-04-10T18:56:33.260Z",
    "dateReserved": "2024-03-25T09:12:14.116Z",
    "dateUpdated": "2025-05-04T12:41:15.139Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-6270 (GCVE-0-2023-6270)

Vulnerability from cvelistv5

Published

2024-01-04 17:01

Modified

2025-04-14 19:04

Severity ?

7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-416 - Use After Free

Summary

A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` global queue. This could lead to a denial of service condition or potential code execution.

References

►

URL

Tags

	https://web.git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/drivers/block/aoe?h=v6.9&id=f98364e926626c678fb4b9004b75cacf92ff0662	patch
	https://access.redhat.com/security/cve/CVE-2023-6270	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2256786	issue-tracking, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

►

Red Hat

Red Hat Enterprise Linux 6

cpe:/o:redhat:enterprise_linux:6

Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-6270",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-22T13:48:09.407937Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-22T13:48:53.219Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T08:28:20.376Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2023-6270"
          },
          {
            "name": "RHBZ#2256786",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256786"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://web.git.kernel.org/",
          "defaultStatus": "unknown",
          "packageName": "kernel",
          "versions": [
            {
              "status": "unaffected",
              "version": "6.9",
              "versionType": "semver"
            }
          ]
        }
      ],
      "datePublic": "2024-01-04T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` global queue. This could lead to a denial of service condition or potential code execution."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use After Free",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-04-14T19:04:13.979Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "Upstream fix",
          "tags": [
            "patch"
          ],
          "url": "https://web.git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/drivers/block/aoe?h=v6.9\u0026id=f98364e926626c678fb4b9004b75cacf92ff0662"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2023-6270"
        },
        {
          "name": "RHBZ#2256786",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256786"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2023-09-29T00:00:00+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-01-04T00:00:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "Kernel: aoe: improper reference count leads to use-after-free vulnerability",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
        }
      ],
      "x_redhatCweChain": "CWE-911-\u003eCWE-416: Improper Update of Reference Count leads to Use After Free"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2023-6270",
    "datePublished": "2024-01-04T17:01:51.165Z",
    "dateReserved": "2023-11-23T14:31:28.637Z",
    "dateUpdated": "2025-04-14T19:04:13.979Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27039 (GCVE-0-2024-27039)

Vulnerability from cvelistv5

Published

2024-05-01 12:53

Modified

2025-05-04 09:02

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: clk: hisilicon: hi3559a: Fix an erroneous devm_kfree() 'p_clk' is an array allocated just before the for loop for all clk that need to be registered. It is incremented at each loop iteration. If a clk_register() call fails, 'p_clk' may point to something different from what should be freed. The best we can do, is to avoid this wrong release of memory.

References

►

URL

Tags

	https://git.kernel.org/stable/c/3f8445f1c746fda180a7f75372ed06b24e9cefe2
	https://git.kernel.org/stable/c/e0b0d1c46a2ce1e46b79d004a7270fdef872e097
	https://git.kernel.org/stable/c/95d1f1228c1bb54803ae57525b76db60e99b37e4
	https://git.kernel.org/stable/c/2cc572e0085ebd4b662b74a0f43222bc00df9a00
	https://git.kernel.org/stable/c/d575765b1b62e8bdb00af11caa1aabeb01763d9f
	https://git.kernel.org/stable/c/64c6a38136b74a2f18c42199830975edd9fbc379

Impacted products

Vendor

Product

Version

►

Linux

Version: 6c81966107dc0caa5d2ebedbcebb5f10d865064d
Version: 6c81966107dc0caa5d2ebedbcebb5f10d865064d
Version: 6c81966107dc0caa5d2ebedbcebb5f10d865064d
Version: 6c81966107dc0caa5d2ebedbcebb5f10d865064d
Version: 6c81966107dc0caa5d2ebedbcebb5f10d865064d
Version: 6c81966107dc0caa5d2ebedbcebb5f10d865064d

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27039",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T16:17:48.442556Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:46:32.395Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.865Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3f8445f1c746fda180a7f75372ed06b24e9cefe2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e0b0d1c46a2ce1e46b79d004a7270fdef872e097"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/95d1f1228c1bb54803ae57525b76db60e99b37e4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2cc572e0085ebd4b662b74a0f43222bc00df9a00"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d575765b1b62e8bdb00af11caa1aabeb01763d9f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/64c6a38136b74a2f18c42199830975edd9fbc379"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/hisilicon/clk-hi3559a.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "3f8445f1c746fda180a7f75372ed06b24e9cefe2",
              "status": "affected",
              "version": "6c81966107dc0caa5d2ebedbcebb5f10d865064d",
              "versionType": "git"
            },
            {
              "lessThan": "e0b0d1c46a2ce1e46b79d004a7270fdef872e097",
              "status": "affected",
              "version": "6c81966107dc0caa5d2ebedbcebb5f10d865064d",
              "versionType": "git"
            },
            {
              "lessThan": "95d1f1228c1bb54803ae57525b76db60e99b37e4",
              "status": "affected",
              "version": "6c81966107dc0caa5d2ebedbcebb5f10d865064d",
              "versionType": "git"
            },
            {
              "lessThan": "2cc572e0085ebd4b662b74a0f43222bc00df9a00",
              "status": "affected",
              "version": "6c81966107dc0caa5d2ebedbcebb5f10d865064d",
              "versionType": "git"
            },
            {
              "lessThan": "d575765b1b62e8bdb00af11caa1aabeb01763d9f",
              "status": "affected",
              "version": "6c81966107dc0caa5d2ebedbcebb5f10d865064d",
              "versionType": "git"
            },
            {
              "lessThan": "64c6a38136b74a2f18c42199830975edd9fbc379",
              "status": "affected",
              "version": "6c81966107dc0caa5d2ebedbcebb5f10d865064d",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/hisilicon/clk-hi3559a.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: hisilicon: hi3559a: Fix an erroneous devm_kfree()\n\n\u0027p_clk\u0027 is an array allocated just before the for loop for all clk that\nneed to be registered.\nIt is incremented at each loop iteration.\n\nIf a clk_register() call fails, \u0027p_clk\u0027 may point to something different\nfrom what should be freed.\n\nThe best we can do, is to avoid this wrong release of memory."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:02:52.505Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/3f8445f1c746fda180a7f75372ed06b24e9cefe2"
        },
        {
          "url": "https://git.kernel.org/stable/c/e0b0d1c46a2ce1e46b79d004a7270fdef872e097"
        },
        {
          "url": "https://git.kernel.org/stable/c/95d1f1228c1bb54803ae57525b76db60e99b37e4"
        },
        {
          "url": "https://git.kernel.org/stable/c/2cc572e0085ebd4b662b74a0f43222bc00df9a00"
        },
        {
          "url": "https://git.kernel.org/stable/c/d575765b1b62e8bdb00af11caa1aabeb01763d9f"
        },
        {
          "url": "https://git.kernel.org/stable/c/64c6a38136b74a2f18c42199830975edd9fbc379"
        }
      ],
      "title": "clk: hisilicon: hi3559a: Fix an erroneous devm_kfree()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27039",
    "datePublished": "2024-05-01T12:53:57.126Z",
    "dateReserved": "2024-02-19T14:20:24.212Z",
    "dateUpdated": "2025-05-04T09:02:52.505Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52635 (GCVE-0-2023-52635)

Vulnerability from cvelistv5

Published

2024-04-02 06:49

Modified

2025-05-04 07:40

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize devfreq_monitor_[start/stop] There is a chance if a frequent switch of the governor done in a loop result in timer list corruption where timer cancel being done from two place one from cancel_delayed_work_sync() and followed by expire_timers() can be seen from the traces[1]. while true do echo "simple_ondemand" > /sys/class/devfreq/1d84000.ufshc/governor echo "performance" > /sys/class/devfreq/1d84000.ufshc/governor done It looks to be issue with devfreq driver where device_monitor_[start/stop] need to synchronized so that delayed work should get corrupted while it is either being queued or running or being cancelled. Let's use polling flag and devfreq lock to synchronize the queueing the timer instance twice and work data being corrupted. [1] ... .. <idle>-0 [003] 9436.209662: timer_cancel timer=0xffffff80444f0428 <idle>-0 [003] 9436.209664: timer_expire_entry timer=0xffffff80444f0428 now=0x10022da1c function=__typeid__ZTSFvP10timer_listE_global_addr baseclk=0x10022da1c <idle>-0 [003] 9436.209718: timer_expire_exit timer=0xffffff80444f0428 kworker/u16:6-14217 [003] 9436.209863: timer_start timer=0xffffff80444f0428 function=__typeid__ZTSFvP10timer_listE_global_addr expires=0x10022da2b now=0x10022da1c flags=182452227 vendor.xxxyyy.ha-1593 [004] 9436.209888: timer_cancel timer=0xffffff80444f0428 vendor.xxxyyy.ha-1593 [004] 9436.216390: timer_init timer=0xffffff80444f0428 vendor.xxxyyy.ha-1593 [004] 9436.216392: timer_start timer=0xffffff80444f0428 function=__typeid__ZTSFvP10timer_listE_global_addr expires=0x10022da2c now=0x10022da1d flags=186646532 vendor.xxxyyy.ha-1593 [005] 9436.220992: timer_cancel timer=0xffffff80444f0428 xxxyyyTraceManag-7795 [004] 9436.261641: timer_cancel timer=0xffffff80444f0428 [2] 9436.261653][ C4] Unable to handle kernel paging request at virtual address dead00000000012a [ 9436.261664][ C4] Mem abort info: [ 9436.261666][ C4] ESR = 0x96000044 [ 9436.261669][ C4] EC = 0x25: DABT (current EL), IL = 32 bits [ 9436.261671][ C4] SET = 0, FnV = 0 [ 9436.261673][ C4] EA = 0, S1PTW = 0 [ 9436.261675][ C4] Data abort info: [ 9436.261677][ C4] ISV = 0, ISS = 0x00000044 [ 9436.261680][ C4] CM = 0, WnR = 1 [ 9436.261682][ C4] [dead00000000012a] address between user and kernel address ranges [ 9436.261685][ C4] Internal error: Oops: 96000044 [#1] PREEMPT SMP [ 9436.261701][ C4] Skip md ftrace buffer dump for: 0x3a982d0 ... [ 9436.262138][ C4] CPU: 4 PID: 7795 Comm: TraceManag Tainted: G S W O 5.10.149-android12-9-o-g17f915d29d0c #1 [ 9436.262141][ C4] Hardware name: Qualcomm Technologies, Inc. (DT) [ 9436.262144][ C4] pstate: 22400085 (nzCv daIf +PAN -UAO +TCO BTYPE=--) [ 9436.262161][ C4] pc : expire_timers+0x9c/0x438 [ 9436.262164][ C4] lr : expire_timers+0x2a4/0x438 [ 9436.262168][ C4] sp : ffffffc010023dd0 [ 9436.262171][ C4] x29: ffffffc010023df0 x28: ffffffd0636fdc18 [ 9436.262178][ C4] x27: ffffffd063569dd0 x26: ffffffd063536008 [ 9436.262182][ C4] x25: 0000000000000001 x24: ffffff88f7c69280 [ 9436.262185][ C4] x23: 00000000000000e0 x22: dead000000000122 [ 9436.262188][ C4] x21: 000000010022da29 x20: ffffff8af72b4e80 [ 9436.262191][ C4] x19: ffffffc010023e50 x18: ffffffc010025038 [ 9436.262195][ C4] x17: 0000000000000240 x16: 0000000000000201 [ 9436.262199][ C4] x15: ffffffffffffffff x14: ffffff889f3c3100 [ 9436.262203][ C4] x13: ffffff889f3c3100 x12: 00000000049f56b8 [ 9436.262207][ C4] x11: 00000000049f56b8 x10: 00000000ffffffff [ 9436.262212][ C4] x9 : ffffffc010023e50 x8 : dead000000000122 [ 9436.262216][ C4] x7 : ffffffffffffffff x6 : ffffffc0100239d8 [ 9436.262220][ C4] x5 : 0000000000000000 x4 : 0000000000000101 [ 9436.262223][ C4] x3 : 0000000000000080 x2 : ffffff8 ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/3399cc7013e761fee9d6eec795e9b31ab0cbe475
	https://git.kernel.org/stable/c/099f6a9edbe30b142c1d97fe9a4748601d995675
	https://git.kernel.org/stable/c/31569995fc65007b73a3fff605ec2b3401b435e9
	https://git.kernel.org/stable/c/0aedb319ef3ed39e9e5a7b7726c8264ca627bbd9
	https://git.kernel.org/stable/c/ae815e2fdc284ab31651d52460698bd89c0fce22
	https://git.kernel.org/stable/c/aed5ed595960c6d301dcd4ed31aeaa7a8054c0c6

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52635",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T19:30:55.797428Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T19:31:03.162Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.345Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3399cc7013e761fee9d6eec795e9b31ab0cbe475"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/099f6a9edbe30b142c1d97fe9a4748601d995675"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/31569995fc65007b73a3fff605ec2b3401b435e9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0aedb319ef3ed39e9e5a7b7726c8264ca627bbd9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ae815e2fdc284ab31651d52460698bd89c0fce22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/aed5ed595960c6d301dcd4ed31aeaa7a8054c0c6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/devfreq/devfreq.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "3399cc7013e761fee9d6eec795e9b31ab0cbe475",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "099f6a9edbe30b142c1d97fe9a4748601d995675",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "31569995fc65007b73a3fff605ec2b3401b435e9",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "0aedb319ef3ed39e9e5a7b7726c8264ca627bbd9",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ae815e2fdc284ab31651d52460698bd89c0fce22",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "aed5ed595960c6d301dcd4ed31aeaa7a8054c0c6",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/devfreq/devfreq.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.77",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.77",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nPM / devfreq: Synchronize devfreq_monitor_[start/stop]\n\nThere is a chance if a frequent switch of the governor\ndone in a loop result in timer list corruption where\ntimer cancel being done from two place one from\ncancel_delayed_work_sync() and followed by expire_timers()\ncan be seen from the traces[1].\n\nwhile true\ndo\n        echo \"simple_ondemand\" \u003e /sys/class/devfreq/1d84000.ufshc/governor\n        echo \"performance\" \u003e /sys/class/devfreq/1d84000.ufshc/governor\ndone\n\nIt looks to be issue with devfreq driver where\ndevice_monitor_[start/stop] need to synchronized so that\ndelayed work should get corrupted while it is either\nbeing queued or running or being cancelled.\n\nLet\u0027s use polling flag and devfreq lock to synchronize the\nqueueing the timer instance twice and work data being\ncorrupted.\n\n[1]\n...\n..\n\u003cidle\u003e-0    [003]   9436.209662:  timer_cancel   timer=0xffffff80444f0428\n\u003cidle\u003e-0    [003]   9436.209664:  timer_expire_entry   timer=0xffffff80444f0428  now=0x10022da1c  function=__typeid__ZTSFvP10timer_listE_global_addr  baseclk=0x10022da1c\n\u003cidle\u003e-0    [003]   9436.209718:  timer_expire_exit   timer=0xffffff80444f0428\nkworker/u16:6-14217    [003]   9436.209863:  timer_start   timer=0xffffff80444f0428  function=__typeid__ZTSFvP10timer_listE_global_addr  expires=0x10022da2b  now=0x10022da1c  flags=182452227\nvendor.xxxyyy.ha-1593    [004]   9436.209888:  timer_cancel   timer=0xffffff80444f0428\nvendor.xxxyyy.ha-1593    [004]   9436.216390:  timer_init   timer=0xffffff80444f0428\nvendor.xxxyyy.ha-1593    [004]   9436.216392:  timer_start   timer=0xffffff80444f0428  function=__typeid__ZTSFvP10timer_listE_global_addr  expires=0x10022da2c  now=0x10022da1d  flags=186646532\nvendor.xxxyyy.ha-1593    [005]   9436.220992:  timer_cancel   timer=0xffffff80444f0428\nxxxyyyTraceManag-7795    [004]   9436.261641:  timer_cancel   timer=0xffffff80444f0428\n\n[2]\n\n 9436.261653][    C4] Unable to handle kernel paging request at virtual address dead00000000012a\n[ 9436.261664][    C4] Mem abort info:\n[ 9436.261666][    C4]   ESR = 0x96000044\n[ 9436.261669][    C4]   EC = 0x25: DABT (current EL), IL = 32 bits\n[ 9436.261671][    C4]   SET = 0, FnV = 0\n[ 9436.261673][    C4]   EA = 0, S1PTW = 0\n[ 9436.261675][    C4] Data abort info:\n[ 9436.261677][    C4]   ISV = 0, ISS = 0x00000044\n[ 9436.261680][    C4]   CM = 0, WnR = 1\n[ 9436.261682][    C4] [dead00000000012a] address between user and kernel address ranges\n[ 9436.261685][    C4] Internal error: Oops: 96000044 [#1] PREEMPT SMP\n[ 9436.261701][    C4] Skip md ftrace buffer dump for: 0x3a982d0\n...\n\n[ 9436.262138][    C4] CPU: 4 PID: 7795 Comm: TraceManag Tainted: G S      W  O      5.10.149-android12-9-o-g17f915d29d0c #1\n[ 9436.262141][    C4] Hardware name: Qualcomm Technologies, Inc.  (DT)\n[ 9436.262144][    C4] pstate: 22400085 (nzCv daIf +PAN -UAO +TCO BTYPE=--)\n[ 9436.262161][    C4] pc : expire_timers+0x9c/0x438\n[ 9436.262164][    C4] lr : expire_timers+0x2a4/0x438\n[ 9436.262168][    C4] sp : ffffffc010023dd0\n[ 9436.262171][    C4] x29: ffffffc010023df0 x28: ffffffd0636fdc18\n[ 9436.262178][    C4] x27: ffffffd063569dd0 x26: ffffffd063536008\n[ 9436.262182][    C4] x25: 0000000000000001 x24: ffffff88f7c69280\n[ 9436.262185][    C4] x23: 00000000000000e0 x22: dead000000000122\n[ 9436.262188][    C4] x21: 000000010022da29 x20: ffffff8af72b4e80\n[ 9436.262191][    C4] x19: ffffffc010023e50 x18: ffffffc010025038\n[ 9436.262195][    C4] x17: 0000000000000240 x16: 0000000000000201\n[ 9436.262199][    C4] x15: ffffffffffffffff x14: ffffff889f3c3100\n[ 9436.262203][    C4] x13: ffffff889f3c3100 x12: 00000000049f56b8\n[ 9436.262207][    C4] x11: 00000000049f56b8 x10: 00000000ffffffff\n[ 9436.262212][    C4] x9 : ffffffc010023e50 x8 : dead000000000122\n[ 9436.262216][    C4] x7 : ffffffffffffffff x6 : ffffffc0100239d8\n[ 9436.262220][    C4] x5 : 0000000000000000 x4 : 0000000000000101\n[ 9436.262223][    C4] x3 : 0000000000000080 x2 : ffffff8\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:40:26.466Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/3399cc7013e761fee9d6eec795e9b31ab0cbe475"
        },
        {
          "url": "https://git.kernel.org/stable/c/099f6a9edbe30b142c1d97fe9a4748601d995675"
        },
        {
          "url": "https://git.kernel.org/stable/c/31569995fc65007b73a3fff605ec2b3401b435e9"
        },
        {
          "url": "https://git.kernel.org/stable/c/0aedb319ef3ed39e9e5a7b7726c8264ca627bbd9"
        },
        {
          "url": "https://git.kernel.org/stable/c/ae815e2fdc284ab31651d52460698bd89c0fce22"
        },
        {
          "url": "https://git.kernel.org/stable/c/aed5ed595960c6d301dcd4ed31aeaa7a8054c0c6"
        }
      ],
      "title": "PM / devfreq: Synchronize devfreq_monitor_[start/stop]",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52635",
    "datePublished": "2024-04-02T06:49:13.143Z",
    "dateReserved": "2024-03-06T09:52:12.092Z",
    "dateUpdated": "2025-05-04T07:40:26.466Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48699 (GCVE-0-2022-48699)

Vulnerability from cvelistv5

Published

2024-05-03 15:11

Modified

2025-05-21 08:43

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: sched/debug: fix dentry leak in update_sched_domain_debugfs Kuyo reports that the pattern of using debugfs_remove(debugfs_lookup()) leaks a dentry and with a hotplug stress test, the machine eventually runs out of memory. Fix this up by using the newly created debugfs_lookup_and_remove() call instead which properly handles the dentry reference counting logic.

References

►

URL

Tags

	https://git.kernel.org/stable/c/26e9a1ded8923510e5529fbb28390b22228700c2
	https://git.kernel.org/stable/c/0c32a93963e03c03e561d5a066eedad211880ba3
	https://git.kernel.org/stable/c/c2e406596571659451f4b95e37ddfd5a8ef1d0dc

Impacted products

Vendor

Product

Version

►

Linux

Version: 3b87f136f8fccddf7da016ab7d04bb3cf9b180f0
Version: 3b87f136f8fccddf7da016ab7d04bb3cf9b180f0
Version: 3b87f136f8fccddf7da016ab7d04bb3cf9b180f0

Linux

Version: 5.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48699",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T17:42:13.797299Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:42.064Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.870Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/26e9a1ded8923510e5529fbb28390b22228700c2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0c32a93963e03c03e561d5a066eedad211880ba3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c2e406596571659451f4b95e37ddfd5a8ef1d0dc"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/sched/debug.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "26e9a1ded8923510e5529fbb28390b22228700c2",
              "status": "affected",
              "version": "3b87f136f8fccddf7da016ab7d04bb3cf9b180f0",
              "versionType": "git"
            },
            {
              "lessThan": "0c32a93963e03c03e561d5a066eedad211880ba3",
              "status": "affected",
              "version": "3b87f136f8fccddf7da016ab7d04bb3cf9b180f0",
              "versionType": "git"
            },
            {
              "lessThan": "c2e406596571659451f4b95e37ddfd5a8ef1d0dc",
              "status": "affected",
              "version": "3b87f136f8fccddf7da016ab7d04bb3cf9b180f0",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/sched/debug.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.13"
            },
            {
              "lessThan": "5.13",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/debug: fix dentry leak in update_sched_domain_debugfs\n\nKuyo reports that the pattern of using debugfs_remove(debugfs_lookup())\nleaks a dentry and with a hotplug stress test, the machine eventually\nruns out of memory.\n\nFix this up by using the newly created debugfs_lookup_and_remove() call\ninstead which properly handles the dentry reference counting logic."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-21T08:43:50.164Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/26e9a1ded8923510e5529fbb28390b22228700c2"
        },
        {
          "url": "https://git.kernel.org/stable/c/0c32a93963e03c03e561d5a066eedad211880ba3"
        },
        {
          "url": "https://git.kernel.org/stable/c/c2e406596571659451f4b95e37ddfd5a8ef1d0dc"
        }
      ],
      "title": "sched/debug: fix dentry leak in update_sched_domain_debugfs",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48699",
    "datePublished": "2024-05-03T15:11:54.150Z",
    "dateReserved": "2024-05-03T14:55:07.145Z",
    "dateUpdated": "2025-05-21T08:43:50.164Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52646 (GCVE-0-2023-52646)

Vulnerability from cvelistv5

Published

2024-04-26 12:19

Modified

2025-05-04 07:40

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: aio: fix mremap after fork null-deref Commit e4a0d3e720e7 ("aio: Make it possible to remap aio ring") introduced a null-deref if mremap is called on an old aio mapping after fork as mm->ioctx_table will be set to NULL. [jmoyer@redhat.com: fix 80 column issue]

References

►

URL

Tags

	https://git.kernel.org/stable/c/808f1e4b5723ae4eda724d2ad6f6638905eefd95
	https://git.kernel.org/stable/c/d8dca1bfe9adcae38b35add64977818c0c13dd22
	https://git.kernel.org/stable/c/4326d0080f7e84fba775da41d158f46cf9d3f1c2
	https://git.kernel.org/stable/c/c261f798f7baa8080cf0214081d43d5f86bb073f
	https://git.kernel.org/stable/c/178993157e8c50aef7f35d7d6d3b44bb428199e1
	https://git.kernel.org/stable/c/af126acf01a12bdb04986fd26fc2eb3b40249e0d
	https://git.kernel.org/stable/c/81e9d6f8647650a7bead74c5f926e29970e834d1

Impacted products

Vendor

Product

Version

►

Linux

Version: e4a0d3e720e7e508749c1439b5ba3aff56c92976
Version: e4a0d3e720e7e508749c1439b5ba3aff56c92976
Version: e4a0d3e720e7e508749c1439b5ba3aff56c92976
Version: e4a0d3e720e7e508749c1439b5ba3aff56c92976
Version: e4a0d3e720e7e508749c1439b5ba3aff56c92976
Version: e4a0d3e720e7e508749c1439b5ba3aff56c92976
Version: e4a0d3e720e7e508749c1439b5ba3aff56c92976

Linux

Version: 3.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52646",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-17T14:11:42.942960Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-17T14:11:56.678Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.281Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/808f1e4b5723ae4eda724d2ad6f6638905eefd95"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d8dca1bfe9adcae38b35add64977818c0c13dd22"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4326d0080f7e84fba775da41d158f46cf9d3f1c2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c261f798f7baa8080cf0214081d43d5f86bb073f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/178993157e8c50aef7f35d7d6d3b44bb428199e1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/af126acf01a12bdb04986fd26fc2eb3b40249e0d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/81e9d6f8647650a7bead74c5f926e29970e834d1"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/aio.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "808f1e4b5723ae4eda724d2ad6f6638905eefd95",
              "status": "affected",
              "version": "e4a0d3e720e7e508749c1439b5ba3aff56c92976",
              "versionType": "git"
            },
            {
              "lessThan": "d8dca1bfe9adcae38b35add64977818c0c13dd22",
              "status": "affected",
              "version": "e4a0d3e720e7e508749c1439b5ba3aff56c92976",
              "versionType": "git"
            },
            {
              "lessThan": "4326d0080f7e84fba775da41d158f46cf9d3f1c2",
              "status": "affected",
              "version": "e4a0d3e720e7e508749c1439b5ba3aff56c92976",
              "versionType": "git"
            },
            {
              "lessThan": "c261f798f7baa8080cf0214081d43d5f86bb073f",
              "status": "affected",
              "version": "e4a0d3e720e7e508749c1439b5ba3aff56c92976",
              "versionType": "git"
            },
            {
              "lessThan": "178993157e8c50aef7f35d7d6d3b44bb428199e1",
              "status": "affected",
              "version": "e4a0d3e720e7e508749c1439b5ba3aff56c92976",
              "versionType": "git"
            },
            {
              "lessThan": "af126acf01a12bdb04986fd26fc2eb3b40249e0d",
              "status": "affected",
              "version": "e4a0d3e720e7e508749c1439b5ba3aff56c92976",
              "versionType": "git"
            },
            {
              "lessThan": "81e9d6f8647650a7bead74c5f926e29970e834d1",
              "status": "affected",
              "version": "e4a0d3e720e7e508749c1439b5ba3aff56c92976",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/aio.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.19"
            },
            {
              "lessThan": "3.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.306",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.232",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.169",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.95",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.13",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.2",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.306",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.273",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.232",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.169",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.95",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.13",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.2",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\naio: fix mremap after fork null-deref\n\nCommit e4a0d3e720e7 (\"aio: Make it possible to remap aio ring\") introduced\na null-deref if mremap is called on an old aio mapping after fork as\nmm-\u003eioctx_table will be set to NULL.\n\n[jmoyer@redhat.com: fix 80 column issue]"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:40:47.360Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/808f1e4b5723ae4eda724d2ad6f6638905eefd95"
        },
        {
          "url": "https://git.kernel.org/stable/c/d8dca1bfe9adcae38b35add64977818c0c13dd22"
        },
        {
          "url": "https://git.kernel.org/stable/c/4326d0080f7e84fba775da41d158f46cf9d3f1c2"
        },
        {
          "url": "https://git.kernel.org/stable/c/c261f798f7baa8080cf0214081d43d5f86bb073f"
        },
        {
          "url": "https://git.kernel.org/stable/c/178993157e8c50aef7f35d7d6d3b44bb428199e1"
        },
        {
          "url": "https://git.kernel.org/stable/c/af126acf01a12bdb04986fd26fc2eb3b40249e0d"
        },
        {
          "url": "https://git.kernel.org/stable/c/81e9d6f8647650a7bead74c5f926e29970e834d1"
        }
      ],
      "title": "aio: fix mremap after fork null-deref",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52646",
    "datePublished": "2024-04-26T12:19:32.167Z",
    "dateReserved": "2024-03-06T09:52:12.094Z",
    "dateUpdated": "2025-05-04T07:40:47.360Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48658 (GCVE-0-2022-48658)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: mm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context. Commit 5a836bf6b09f ("mm: slub: move flush_cpu_slab() invocations __free_slab() invocations out of IRQ context") moved all flush_cpu_slab() invocations to the global workqueue to avoid a problem related with deactivate_slab()/__free_slab() being called from an IRQ context on PREEMPT_RT kernels. When the flush_all_cpu_locked() function is called from a task context it may happen that a workqueue with WQ_MEM_RECLAIM bit set ends up flushing the global workqueue, this will cause a dependency issue. workqueue: WQ_MEM_RECLAIM nvme-delete-wq:nvme_delete_ctrl_work [nvme_core] is flushing !WQ_MEM_RECLAIM events:flush_cpu_slab WARNING: CPU: 37 PID: 410 at kernel/workqueue.c:2637 check_flush_dependency+0x10a/0x120 Workqueue: nvme-delete-wq nvme_delete_ctrl_work [nvme_core] RIP: 0010:check_flush_dependency+0x10a/0x120[ 453.262125] Call Trace: __flush_work.isra.0+0xbf/0x220 ? __queue_work+0x1dc/0x420 flush_all_cpus_locked+0xfb/0x120 __kmem_cache_shutdown+0x2b/0x320 kmem_cache_destroy+0x49/0x100 bioset_exit+0x143/0x190 blk_release_queue+0xb9/0x100 kobject_cleanup+0x37/0x130 nvme_fc_ctrl_free+0xc6/0x150 [nvme_fc] nvme_free_ctrl+0x1ac/0x2b0 [nvme_core] Fix this bug by creating a workqueue for the flush operation with the WQ_MEM_RECLAIM bit set.

References

►

URL

Tags

	https://git.kernel.org/stable/c/61703b248be993eb4997b00ae5d3318e6d8f3c5b
	https://git.kernel.org/stable/c/df6cb39335cf5a1b918e8dbd8ba7cd9f1d00e45a
	https://git.kernel.org/stable/c/e45cc288724f0cfd497bb5920bcfa60caa335729

Impacted products

Vendor

Product

Version

►

Linux

Version: 5a836bf6b09f99ead1b69457ff39ab3011ece57b
Version: 5a836bf6b09f99ead1b69457ff39ab3011ece57b
Version: 5a836bf6b09f99ead1b69457ff39ab3011ece57b

Linux

Version: 5.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.669Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/61703b248be993eb4997b00ae5d3318e6d8f3c5b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/df6cb39335cf5a1b918e8dbd8ba7cd9f1d00e45a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e45cc288724f0cfd497bb5920bcfa60caa335729"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48658",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:46:04.814997Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:55.526Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "mm/slub.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "61703b248be993eb4997b00ae5d3318e6d8f3c5b",
              "status": "affected",
              "version": "5a836bf6b09f99ead1b69457ff39ab3011ece57b",
              "versionType": "git"
            },
            {
              "lessThan": "df6cb39335cf5a1b918e8dbd8ba7cd9f1d00e45a",
              "status": "affected",
              "version": "5a836bf6b09f99ead1b69457ff39ab3011ece57b",
              "versionType": "git"
            },
            {
              "lessThan": "e45cc288724f0cfd497bb5920bcfa60caa335729",
              "status": "affected",
              "version": "5a836bf6b09f99ead1b69457ff39ab3011ece57b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "mm/slub.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.15"
            },
            {
              "lessThan": "5.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context.\n\nCommit 5a836bf6b09f (\"mm: slub: move flush_cpu_slab() invocations\n__free_slab() invocations out of IRQ context\") moved all flush_cpu_slab()\ninvocations to the global workqueue to avoid a problem related\nwith deactivate_slab()/__free_slab() being called from an IRQ context\non PREEMPT_RT kernels.\n\nWhen the flush_all_cpu_locked() function is called from a task context\nit may happen that a workqueue with WQ_MEM_RECLAIM bit set ends up\nflushing the global workqueue, this will cause a dependency issue.\n\n workqueue: WQ_MEM_RECLAIM nvme-delete-wq:nvme_delete_ctrl_work [nvme_core]\n   is flushing !WQ_MEM_RECLAIM events:flush_cpu_slab\n WARNING: CPU: 37 PID: 410 at kernel/workqueue.c:2637\n   check_flush_dependency+0x10a/0x120\n Workqueue: nvme-delete-wq nvme_delete_ctrl_work [nvme_core]\n RIP: 0010:check_flush_dependency+0x10a/0x120[  453.262125] Call Trace:\n __flush_work.isra.0+0xbf/0x220\n ? __queue_work+0x1dc/0x420\n flush_all_cpus_locked+0xfb/0x120\n __kmem_cache_shutdown+0x2b/0x320\n kmem_cache_destroy+0x49/0x100\n bioset_exit+0x143/0x190\n blk_release_queue+0xb9/0x100\n kobject_cleanup+0x37/0x130\n nvme_fc_ctrl_free+0xc6/0x150 [nvme_fc]\n nvme_free_ctrl+0x1ac/0x2b0 [nvme_core]\n\nFix this bug by creating a workqueue for the flush operation with\nthe WQ_MEM_RECLAIM bit set."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:43.519Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/61703b248be993eb4997b00ae5d3318e6d8f3c5b"
        },
        {
          "url": "https://git.kernel.org/stable/c/df6cb39335cf5a1b918e8dbd8ba7cd9f1d00e45a"
        },
        {
          "url": "https://git.kernel.org/stable/c/e45cc288724f0cfd497bb5920bcfa60caa335729"
        }
      ],
      "title": "mm: slub: fix flush_cpu_slab()/__free_slab() invocations in task context.",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48658",
    "datePublished": "2024-04-28T13:01:12.987Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:43.519Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26955 (GCVE-0-2024-26955)

Vulnerability from cvelistv5

Published

2024-05-01 05:18

Modified

2025-05-04 09:00

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: nilfs2: prevent kernel bug at submit_bh_wbc() Fix a bug where nilfs_get_block() returns a successful status when searching and inserting the specified block both fail inconsistently. If this inconsistent behavior is not due to a previously fixed bug, then an unexpected race is occurring, so return a temporary error -EAGAIN instead. This prevents callers such as __block_write_begin_int() from requesting a read into a buffer that is not mapped, which would cause the BUG_ON check for the BH_Mapped flag in submit_bh_wbc() to fail.

References

►

URL

Tags

	https://git.kernel.org/stable/c/91e4c4595fae5e87069e44687ae879091783c183
	https://git.kernel.org/stable/c/32eaee72e96590a75445c8a6c7c1057673b47e07
	https://git.kernel.org/stable/c/f0fe7ad5aff4f0fcf988913313c497de85f1e186
	https://git.kernel.org/stable/c/ca581d237f3b8539c044205bb003de71d75d227c
	https://git.kernel.org/stable/c/192e9f9078c96be30b31c4b44d6294b24520fce5
	https://git.kernel.org/stable/c/0c8aa4cfda4e4adb15d5b6536d155eca9c9cd44c
	https://git.kernel.org/stable/c/48d443d200237782dc82e6b60663ec414ef02e39
	https://git.kernel.org/stable/c/76ffbe911e2798c7296968f5fd72f7bf67207a8d
	https://git.kernel.org/stable/c/269cdf353b5bdd15f1a079671b0f889113865f20

Impacted products

Vendor

Product

Version

►

Linux

Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b
Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b
Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b
Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b
Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b
Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b
Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b
Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b
Version: 1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b

Linux

Version: 2.6.30

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26955",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T17:51:47.841182Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:21.638Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.746Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/91e4c4595fae5e87069e44687ae879091783c183"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/32eaee72e96590a75445c8a6c7c1057673b47e07"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f0fe7ad5aff4f0fcf988913313c497de85f1e186"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ca581d237f3b8539c044205bb003de71d75d227c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/192e9f9078c96be30b31c4b44d6294b24520fce5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0c8aa4cfda4e4adb15d5b6536d155eca9c9cd44c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/48d443d200237782dc82e6b60663ec414ef02e39"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/76ffbe911e2798c7296968f5fd72f7bf67207a8d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/269cdf353b5bdd15f1a079671b0f889113865f20"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/inode.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "91e4c4595fae5e87069e44687ae879091783c183",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            },
            {
              "lessThan": "32eaee72e96590a75445c8a6c7c1057673b47e07",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            },
            {
              "lessThan": "f0fe7ad5aff4f0fcf988913313c497de85f1e186",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            },
            {
              "lessThan": "ca581d237f3b8539c044205bb003de71d75d227c",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            },
            {
              "lessThan": "192e9f9078c96be30b31c4b44d6294b24520fce5",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            },
            {
              "lessThan": "0c8aa4cfda4e4adb15d5b6536d155eca9c9cd44c",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            },
            {
              "lessThan": "48d443d200237782dc82e6b60663ec414ef02e39",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            },
            {
              "lessThan": "76ffbe911e2798c7296968f5fd72f7bf67207a8d",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            },
            {
              "lessThan": "269cdf353b5bdd15f1a079671b0f889113865f20",
              "status": "affected",
              "version": "1f5abe7e7dbcd83e73212c6cb135a6106cea6a0b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/inode.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.30"
            },
            {
              "lessThan": "2.6.30",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.312",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.312",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent kernel bug at submit_bh_wbc()\n\nFix a bug where nilfs_get_block() returns a successful status when\nsearching and inserting the specified block both fail inconsistently.  If\nthis inconsistent behavior is not due to a previously fixed bug, then an\nunexpected race is occurring, so return a temporary error -EAGAIN instead.\n\nThis prevents callers such as __block_write_begin_int() from requesting a\nread into a buffer that is not mapped, which would cause the BUG_ON check\nfor the BH_Mapped flag in submit_bh_wbc() to fail."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:00:38.073Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/91e4c4595fae5e87069e44687ae879091783c183"
        },
        {
          "url": "https://git.kernel.org/stable/c/32eaee72e96590a75445c8a6c7c1057673b47e07"
        },
        {
          "url": "https://git.kernel.org/stable/c/f0fe7ad5aff4f0fcf988913313c497de85f1e186"
        },
        {
          "url": "https://git.kernel.org/stable/c/ca581d237f3b8539c044205bb003de71d75d227c"
        },
        {
          "url": "https://git.kernel.org/stable/c/192e9f9078c96be30b31c4b44d6294b24520fce5"
        },
        {
          "url": "https://git.kernel.org/stable/c/0c8aa4cfda4e4adb15d5b6536d155eca9c9cd44c"
        },
        {
          "url": "https://git.kernel.org/stable/c/48d443d200237782dc82e6b60663ec414ef02e39"
        },
        {
          "url": "https://git.kernel.org/stable/c/76ffbe911e2798c7296968f5fd72f7bf67207a8d"
        },
        {
          "url": "https://git.kernel.org/stable/c/269cdf353b5bdd15f1a079671b0f889113865f20"
        }
      ],
      "title": "nilfs2: prevent kernel bug at submit_bh_wbc()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26955",
    "datePublished": "2024-05-01T05:18:51.866Z",
    "dateReserved": "2024-02-19T14:20:24.200Z",
    "dateUpdated": "2025-05-04T09:00:38.073Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27041 (GCVE-0-2024-27041)

Vulnerability from cvelistv5

Published

2024-05-01 12:54

Modified

2025-05-04 09:02

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix NULL checks for adev->dm.dc in amdgpu_dm_fini() Since 'adev->dm.dc' in amdgpu_dm_fini() might turn out to be NULL before the call to dc_enable_dmub_notifications(), check beforehand to ensure there will not be a possible NULL-ptr-deref there. Also, since commit 1e88eb1b2c25 ("drm/amd/display: Drop CONFIG_DRM_AMD_DC_HDCP") there are two separate checks for NULL in 'adev->dm.dc' before dc_deinit_callbacks() and dc_dmub_srv_destroy(). Clean up by combining them all under one 'if'. Found by Linux Verification Center (linuxtesting.org) with static analysis tool SVACE.

References

►

URL

Tags

	https://git.kernel.org/stable/c/e040f1fbe9abae91b12b074cfc3bbb5367b79811
	https://git.kernel.org/stable/c/ca2eb375db76fd50f31afdd67d6ca4f833254957
	https://git.kernel.org/stable/c/1c62697e4086de988b31124fb8c79c244ea05f2b
	https://git.kernel.org/stable/c/2a3cfb9a24a28da9cc13d2c525a76548865e182c

Impacted products

Vendor

Product

Version

►

Linux

Version: 81927e2808be5adace93c2012d45d6938d3a7aa0
Version: 81927e2808be5adace93c2012d45d6938d3a7aa0
Version: 81927e2808be5adace93c2012d45d6938d3a7aa0
Version: 81927e2808be5adace93c2012d45d6938d3a7aa0

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.932Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e040f1fbe9abae91b12b074cfc3bbb5367b79811"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ca2eb375db76fd50f31afdd67d6ca4f833254957"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1c62697e4086de988b31124fb8c79c244ea05f2b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2a3cfb9a24a28da9cc13d2c525a76548865e182c"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27041",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-24T14:44:31.681685Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-476",
                "description": "CWE-476 NULL Pointer Dereference",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-01T15:50:14.011Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e040f1fbe9abae91b12b074cfc3bbb5367b79811",
              "status": "affected",
              "version": "81927e2808be5adace93c2012d45d6938d3a7aa0",
              "versionType": "git"
            },
            {
              "lessThan": "ca2eb375db76fd50f31afdd67d6ca4f833254957",
              "status": "affected",
              "version": "81927e2808be5adace93c2012d45d6938d3a7aa0",
              "versionType": "git"
            },
            {
              "lessThan": "1c62697e4086de988b31124fb8c79c244ea05f2b",
              "status": "affected",
              "version": "81927e2808be5adace93c2012d45d6938d3a7aa0",
              "versionType": "git"
            },
            {
              "lessThan": "2a3cfb9a24a28da9cc13d2c525a76548865e182c",
              "status": "affected",
              "version": "81927e2808be5adace93c2012d45d6938d3a7aa0",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix NULL checks for adev-\u003edm.dc in amdgpu_dm_fini()\n\nSince \u0027adev-\u003edm.dc\u0027 in amdgpu_dm_fini() might turn out to be NULL\nbefore the call to dc_enable_dmub_notifications(), check\nbeforehand to ensure there will not be a possible NULL-ptr-deref\nthere.\n\nAlso, since commit 1e88eb1b2c25 (\"drm/amd/display: Drop\nCONFIG_DRM_AMD_DC_HDCP\") there are two separate checks for NULL in\n\u0027adev-\u003edm.dc\u0027 before dc_deinit_callbacks() and dc_dmub_srv_destroy().\nClean up by combining them all under one \u0027if\u0027.\n\nFound by Linux Verification Center (linuxtesting.org) with static\nanalysis tool SVACE."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:02:55.253Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e040f1fbe9abae91b12b074cfc3bbb5367b79811"
        },
        {
          "url": "https://git.kernel.org/stable/c/ca2eb375db76fd50f31afdd67d6ca4f833254957"
        },
        {
          "url": "https://git.kernel.org/stable/c/1c62697e4086de988b31124fb8c79c244ea05f2b"
        },
        {
          "url": "https://git.kernel.org/stable/c/2a3cfb9a24a28da9cc13d2c525a76548865e182c"
        }
      ],
      "title": "drm/amd/display: fix NULL checks for adev-\u003edm.dc in amdgpu_dm_fini()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27041",
    "datePublished": "2024-05-01T12:54:04.111Z",
    "dateReserved": "2024-02-19T14:20:24.212Z",
    "dateUpdated": "2025-05-04T09:02:55.253Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48688 (GCVE-0-2022-48688)

Vulnerability from cvelistv5

Published

2024-05-03 14:59

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix kernel crash during module removal The driver incorrectly frees client instance and subsequent i40e module removal leads to kernel crash. Reproducer: 1. Do ethtool offline test followed immediately by another one host# ethtool -t eth0 offline; ethtool -t eth0 offline 2. Remove recursively irdma module that also removes i40e module host# modprobe -r irdma Result: [ 8675.035651] i40e 0000:3d:00.0 eno1: offline testing starting [ 8675.193774] i40e 0000:3d:00.0 eno1: testing finished [ 8675.201316] i40e 0000:3d:00.0 eno1: offline testing starting [ 8675.358921] i40e 0000:3d:00.0 eno1: testing finished [ 8675.496921] i40e 0000:3d:00.0: IRDMA hardware initialization FAILED init_state=2 status=-110 [ 8686.188955] i40e 0000:3d:00.1: i40e_ptp_stop: removed PHC on eno2 [ 8686.943890] i40e 0000:3d:00.1: Deleted LAN device PF1 bus=0x3d dev=0x00 func=0x01 [ 8686.952669] i40e 0000:3d:00.0: i40e_ptp_stop: removed PHC on eno1 [ 8687.761787] BUG: kernel NULL pointer dereference, address: 0000000000000030 [ 8687.768755] #PF: supervisor read access in kernel mode [ 8687.773895] #PF: error_code(0x0000) - not-present page [ 8687.779034] PGD 0 P4D 0 [ 8687.781575] Oops: 0000 [#1] PREEMPT SMP NOPTI [ 8687.785935] CPU: 51 PID: 172891 Comm: rmmod Kdump: loaded Tainted: G W I 5.19.0+ #2 [ 8687.794800] Hardware name: Intel Corporation S2600WFD/S2600WFD, BIOS SE5C620.86B.0X.02.0001.051420190324 05/14/2019 [ 8687.805222] RIP: 0010:i40e_lan_del_device+0x13/0xb0 [i40e] [ 8687.810719] Code: d4 84 c0 0f 84 b8 25 01 00 e9 9c 25 01 00 41 bc f4 ff ff ff eb 91 90 0f 1f 44 00 00 41 54 55 53 48 8b 87 58 08 00 00 48 89 fb <48> 8b 68 30 48 89 ef e8 21 8a 0f d5 48 89 ef e8 a9 78 0f d5 48 8b [ 8687.829462] RSP: 0018:ffffa604072efce0 EFLAGS: 00010202 [ 8687.834689] RAX: 0000000000000000 RBX: ffff8f43833b2000 RCX: 0000000000000000 [ 8687.841821] RDX: 0000000000000000 RSI: ffff8f4b0545b298 RDI: ffff8f43833b2000 [ 8687.848955] RBP: ffff8f43833b2000 R08: 0000000000000001 R09: 0000000000000000 [ 8687.856086] R10: 0000000000000000 R11: 000ffffffffff000 R12: ffff8f43833b2ef0 [ 8687.863218] R13: ffff8f43833b2ef0 R14: ffff915103966000 R15: ffff8f43833b2008 [ 8687.870342] FS: 00007f79501c3740(0000) GS:ffff8f4adffc0000(0000) knlGS:0000000000000000 [ 8687.878427] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 8687.884174] CR2: 0000000000000030 CR3: 000000014276e004 CR4: 00000000007706e0 [ 8687.891306] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 8687.898441] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 8687.905572] PKRU: 55555554 [ 8687.908286] Call Trace: [ 8687.910737] <TASK> [ 8687.912843] i40e_remove+0x2c0/0x330 [i40e] [ 8687.917040] pci_device_remove+0x33/0xa0 [ 8687.920962] device_release_driver_internal+0x1aa/0x230 [ 8687.926188] driver_detach+0x44/0x90 [ 8687.929770] bus_remove_driver+0x55/0xe0 [ 8687.933693] pci_unregister_driver+0x2a/0xb0 [ 8687.937967] i40e_exit_module+0xc/0xf48 [i40e] Two offline tests cause IRDMA driver failure (ETIMEDOUT) and this failure is indicated back to i40e_client_subtask() that calls i40e_client_del_instance() to free client instance referenced by pf->cinst and sets this pointer to NULL. During the module removal i40e_remove() calls i40e_lan_del_device() that dereferences pf->cinst that is NULL -> crash. Do not remove client instance when client open callbacks fails and just clear __I40E_CLIENT_INSTANCE_OPENED bit. The driver also needs to take care about this situation (when netdev is up and client is NOT opened) in i40e_notify_client_of_netdev_close() and calls client close callback only when __I40E_CLIENT_INSTANCE_OPENED is set.

References

►

URL

Tags

	https://git.kernel.org/stable/c/c49f320e2492738d478bc427dcd54ccfe0cba746
	https://git.kernel.org/stable/c/5332a094514852d5e58c278cf4193adb937337fc
	https://git.kernel.org/stable/c/342d77769a6cceb3df7720a1e18baa4339eee3fc
	https://git.kernel.org/stable/c/2ed94383f3a2693dbf5bc47c514b42524bd8f9ae
	https://git.kernel.org/stable/c/38af35bec59a8431a1eb29da994a0a45cba275d9
	https://git.kernel.org/stable/c/fb8396aeda5872369a8ed6d2301e2c86e303c520

Impacted products

Vendor

Product

Version

►

Linux

Version: 0ef2d5afb12d379f4dd5df696219a01b88bb778a
Version: 0ef2d5afb12d379f4dd5df696219a01b88bb778a
Version: 0ef2d5afb12d379f4dd5df696219a01b88bb778a
Version: 0ef2d5afb12d379f4dd5df696219a01b88bb778a
Version: 0ef2d5afb12d379f4dd5df696219a01b88bb778a
Version: 0ef2d5afb12d379f4dd5df696219a01b88bb778a

Linux

Version: 4.12

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.725Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c49f320e2492738d478bc427dcd54ccfe0cba746"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5332a094514852d5e58c278cf4193adb937337fc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/342d77769a6cceb3df7720a1e18baa4339eee3fc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2ed94383f3a2693dbf5bc47c514b42524bd8f9ae"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/38af35bec59a8431a1eb29da994a0a45cba275d9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fb8396aeda5872369a8ed6d2301e2c86e303c520"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48688",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:43:39.399109Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:28.032Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/i40e/i40e_client.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "c49f320e2492738d478bc427dcd54ccfe0cba746",
              "status": "affected",
              "version": "0ef2d5afb12d379f4dd5df696219a01b88bb778a",
              "versionType": "git"
            },
            {
              "lessThan": "5332a094514852d5e58c278cf4193adb937337fc",
              "status": "affected",
              "version": "0ef2d5afb12d379f4dd5df696219a01b88bb778a",
              "versionType": "git"
            },
            {
              "lessThan": "342d77769a6cceb3df7720a1e18baa4339eee3fc",
              "status": "affected",
              "version": "0ef2d5afb12d379f4dd5df696219a01b88bb778a",
              "versionType": "git"
            },
            {
              "lessThan": "2ed94383f3a2693dbf5bc47c514b42524bd8f9ae",
              "status": "affected",
              "version": "0ef2d5afb12d379f4dd5df696219a01b88bb778a",
              "versionType": "git"
            },
            {
              "lessThan": "38af35bec59a8431a1eb29da994a0a45cba275d9",
              "status": "affected",
              "version": "0ef2d5afb12d379f4dd5df696219a01b88bb778a",
              "versionType": "git"
            },
            {
              "lessThan": "fb8396aeda5872369a8ed6d2301e2c86e303c520",
              "status": "affected",
              "version": "0ef2d5afb12d379f4dd5df696219a01b88bb778a",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/i40e/i40e_client.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.12"
            },
            {
              "lessThan": "4.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.258",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.258",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "4.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Fix kernel crash during module removal\n\nThe driver incorrectly frees client instance and subsequent\ni40e module removal leads to kernel crash.\n\nReproducer:\n1. Do ethtool offline test followed immediately by another one\nhost# ethtool -t eth0 offline; ethtool -t eth0 offline\n2. Remove recursively irdma module that also removes i40e module\nhost# modprobe -r irdma\n\nResult:\n[ 8675.035651] i40e 0000:3d:00.0 eno1: offline testing starting\n[ 8675.193774] i40e 0000:3d:00.0 eno1: testing finished\n[ 8675.201316] i40e 0000:3d:00.0 eno1: offline testing starting\n[ 8675.358921] i40e 0000:3d:00.0 eno1: testing finished\n[ 8675.496921] i40e 0000:3d:00.0: IRDMA hardware initialization FAILED init_state=2 status=-110\n[ 8686.188955] i40e 0000:3d:00.1: i40e_ptp_stop: removed PHC on eno2\n[ 8686.943890] i40e 0000:3d:00.1: Deleted LAN device PF1 bus=0x3d dev=0x00 func=0x01\n[ 8686.952669] i40e 0000:3d:00.0: i40e_ptp_stop: removed PHC on eno1\n[ 8687.761787] BUG: kernel NULL pointer dereference, address: 0000000000000030\n[ 8687.768755] #PF: supervisor read access in kernel mode\n[ 8687.773895] #PF: error_code(0x0000) - not-present page\n[ 8687.779034] PGD 0 P4D 0\n[ 8687.781575] Oops: 0000 [#1] PREEMPT SMP NOPTI\n[ 8687.785935] CPU: 51 PID: 172891 Comm: rmmod Kdump: loaded Tainted: G        W I        5.19.0+ #2\n[ 8687.794800] Hardware name: Intel Corporation S2600WFD/S2600WFD, BIOS SE5C620.86B.0X.02.0001.051420190324 05/14/2019\n[ 8687.805222] RIP: 0010:i40e_lan_del_device+0x13/0xb0 [i40e]\n[ 8687.810719] Code: d4 84 c0 0f 84 b8 25 01 00 e9 9c 25 01 00 41 bc f4 ff ff ff eb 91 90 0f 1f 44 00 00 41 54 55 53 48 8b 87 58 08 00 00 48 89 fb \u003c48\u003e 8b 68 30 48 89 ef e8 21 8a 0f d5 48 89 ef e8 a9 78 0f d5 48 8b\n[ 8687.829462] RSP: 0018:ffffa604072efce0 EFLAGS: 00010202\n[ 8687.834689] RAX: 0000000000000000 RBX: ffff8f43833b2000 RCX: 0000000000000000\n[ 8687.841821] RDX: 0000000000000000 RSI: ffff8f4b0545b298 RDI: ffff8f43833b2000\n[ 8687.848955] RBP: ffff8f43833b2000 R08: 0000000000000001 R09: 0000000000000000\n[ 8687.856086] R10: 0000000000000000 R11: 000ffffffffff000 R12: ffff8f43833b2ef0\n[ 8687.863218] R13: ffff8f43833b2ef0 R14: ffff915103966000 R15: ffff8f43833b2008\n[ 8687.870342] FS:  00007f79501c3740(0000) GS:ffff8f4adffc0000(0000) knlGS:0000000000000000\n[ 8687.878427] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 8687.884174] CR2: 0000000000000030 CR3: 000000014276e004 CR4: 00000000007706e0\n[ 8687.891306] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 8687.898441] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 8687.905572] PKRU: 55555554\n[ 8687.908286] Call Trace:\n[ 8687.910737]  \u003cTASK\u003e\n[ 8687.912843]  i40e_remove+0x2c0/0x330 [i40e]\n[ 8687.917040]  pci_device_remove+0x33/0xa0\n[ 8687.920962]  device_release_driver_internal+0x1aa/0x230\n[ 8687.926188]  driver_detach+0x44/0x90\n[ 8687.929770]  bus_remove_driver+0x55/0xe0\n[ 8687.933693]  pci_unregister_driver+0x2a/0xb0\n[ 8687.937967]  i40e_exit_module+0xc/0xf48 [i40e]\n\nTwo offline tests cause IRDMA driver failure (ETIMEDOUT) and this\nfailure is indicated back to i40e_client_subtask() that calls\ni40e_client_del_instance() to free client instance referenced\nby pf-\u003ecinst and sets this pointer to NULL. During the module\nremoval i40e_remove() calls i40e_lan_del_device() that dereferences\npf-\u003ecinst that is NULL -\u003e crash.\nDo not remove client instance when client open callbacks fails and\njust clear __I40E_CLIENT_INSTANCE_OPENED bit. The driver also needs\nto take care about this situation (when netdev is up and client\nis NOT opened) in i40e_notify_client_of_netdev_close() and\ncalls client close callback only when __I40E_CLIENT_INSTANCE_OPENED\nis set."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:06.115Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/c49f320e2492738d478bc427dcd54ccfe0cba746"
        },
        {
          "url": "https://git.kernel.org/stable/c/5332a094514852d5e58c278cf4193adb937337fc"
        },
        {
          "url": "https://git.kernel.org/stable/c/342d77769a6cceb3df7720a1e18baa4339eee3fc"
        },
        {
          "url": "https://git.kernel.org/stable/c/2ed94383f3a2693dbf5bc47c514b42524bd8f9ae"
        },
        {
          "url": "https://git.kernel.org/stable/c/38af35bec59a8431a1eb29da994a0a45cba275d9"
        },
        {
          "url": "https://git.kernel.org/stable/c/fb8396aeda5872369a8ed6d2301e2c86e303c520"
        }
      ],
      "title": "i40e: Fix kernel crash during module removal",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48688",
    "datePublished": "2024-05-03T14:59:45.253Z",
    "dateReserved": "2024-05-03T14:55:07.144Z",
    "dateUpdated": "2025-05-04T08:21:06.115Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26733 (GCVE-0-2024-26733)

Vulnerability from cvelistv5

Published

2024-04-03 17:00

Modified

2025-05-04 08:55

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arp_req_get(). syzkaller reported an overflown write in arp_req_get(). [0] When ioctl(SIOCGARP) is issued, arp_req_get() looks up an neighbour entry and copies neigh->ha to struct arpreq.arp_ha.sa_data. The arp_ha here is struct sockaddr, not struct sockaddr_storage, so the sa_data buffer is just 14 bytes. In the splat below, 2 bytes are overflown to the next int field, arp_flags. We initialise the field just after the memcpy(), so it's not a problem. However, when dev->addr_len is greater than 22 (e.g. MAX_ADDR_LEN), arp_netmask is overwritten, which could be set as htonl(0xFFFFFFFFUL) in arp_ioctl() before calling arp_req_get(). To avoid the overflow, let's limit the max length of memcpy(). Note that commit b5f0de6df6dc ("net: dev: Convert sa_data to flexible array in struct sockaddr") just silenced syzkaller. [0]: memcpy: detected field-spanning write (size 16) of single field "r->arp_ha.sa_data" at net/ipv4/arp.c:1128 (size 14) WARNING: CPU: 0 PID: 144638 at net/ipv4/arp.c:1128 arp_req_get+0x411/0x4a0 net/ipv4/arp.c:1128 Modules linked in: CPU: 0 PID: 144638 Comm: syz-executor.4 Not tainted 6.1.74 #31 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.0-debian-1.16.0-5 04/01/2014 RIP: 0010:arp_req_get+0x411/0x4a0 net/ipv4/arp.c:1128 Code: fd ff ff e8 41 42 de fb b9 0e 00 00 00 4c 89 fe 48 c7 c2 20 6d ab 87 48 c7 c7 80 6d ab 87 c6 05 25 af 72 04 01 e8 5f 8d ad fb <0f> 0b e9 6c fd ff ff e8 13 42 de fb be 03 00 00 00 4c 89 e7 e8 a6 RSP: 0018:ffffc900050b7998 EFLAGS: 00010286 RAX: 0000000000000000 RBX: ffff88803a815000 RCX: 0000000000000000 RDX: 0000000000000000 RSI: ffffffff8641a44a RDI: 0000000000000001 RBP: ffffc900050b7a98 R08: 0000000000000001 R09: 0000000000000000 R10: 0000000000000000 R11: 203a7970636d656d R12: ffff888039c54000 R13: 1ffff92000a16f37 R14: ffff88803a815084 R15: 0000000000000010 FS: 00007f172bf306c0(0000) GS:ffff88805aa00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f172b3569f0 CR3: 0000000057f12005 CR4: 0000000000770ef0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 PKRU: 55555554 Call Trace: <TASK> arp_ioctl+0x33f/0x4b0 net/ipv4/arp.c:1261 inet_ioctl+0x314/0x3a0 net/ipv4/af_inet.c:981 sock_do_ioctl+0xdf/0x260 net/socket.c:1204 sock_ioctl+0x3ef/0x650 net/socket.c:1321 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:870 [inline] __se_sys_ioctl fs/ioctl.c:856 [inline] __x64_sys_ioctl+0x18e/0x220 fs/ioctl.c:856 do_syscall_x64 arch/x86/entry/common.c:51 [inline] do_syscall_64+0x37/0x90 arch/x86/entry/common.c:81 entry_SYSCALL_64_after_hwframe+0x64/0xce RIP: 0033:0x7f172b262b8d Code: 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f172bf300b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007f172b3abf80 RCX: 00007f172b262b8d RDX: 0000000020000000 RSI: 0000000000008954 RDI: 0000000000000003 RBP: 00007f172b2d3493 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 000000000000000b R14: 00007f172b3abf80 R15: 00007f172bf10000 </TASK>

References

►

URL

Tags

	https://git.kernel.org/stable/c/dbc9b22d0ed319b4e29034ce0a3fe32a3ee2c587
	https://git.kernel.org/stable/c/97eaa2955db4120ce6ec2ef123e860bc32232c50
	https://git.kernel.org/stable/c/f119f2325ba70cbfdec701000dcad4d88805d5b0
	https://git.kernel.org/stable/c/a3f2c083cb575d80a7627baf3339e78fedccbb91
	https://git.kernel.org/stable/c/3ab0d6f8289ba8402ca95a9fc61a34909d5e1f3a
	https://git.kernel.org/stable/c/a7d6027790acea24446ddd6632d394096c0f4667

Impacted products

Vendor

Product

Version

►

Linux

Version: 2.6.12

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-11-01T17:03:11.240Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dbc9b22d0ed319b4e29034ce0a3fe32a3ee2c587"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/97eaa2955db4120ce6ec2ef123e860bc32232c50"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f119f2325ba70cbfdec701000dcad4d88805d5b0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a3f2c083cb575d80a7627baf3339e78fedccbb91"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3ab0d6f8289ba8402ca95a9fc61a34909d5e1f3a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a7d6027790acea24446ddd6632d394096c0f4667"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "url": "https://security.netapp.com/advisory/ntap-20241101-0013/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26733",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:52:00.464269Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:20.304Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/ipv4/arp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "dbc9b22d0ed319b4e29034ce0a3fe32a3ee2c587",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "97eaa2955db4120ce6ec2ef123e860bc32232c50",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f119f2325ba70cbfdec701000dcad4d88805d5b0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "a3f2c083cb575d80a7627baf3339e78fedccbb91",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "3ab0d6f8289ba8402ca95a9fc61a34909d5e1f3a",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "a7d6027790acea24446ddd6632d394096c0f4667",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/ipv4/arp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.12"
            },
            {
              "lessThan": "2.6.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.211",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.211",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\narp: Prevent overflow in arp_req_get().\n\nsyzkaller reported an overflown write in arp_req_get(). [0]\n\nWhen ioctl(SIOCGARP) is issued, arp_req_get() looks up an neighbour\nentry and copies neigh-\u003eha to struct arpreq.arp_ha.sa_data.\n\nThe arp_ha here is struct sockaddr, not struct sockaddr_storage, so\nthe sa_data buffer is just 14 bytes.\n\nIn the splat below, 2 bytes are overflown to the next int field,\narp_flags.  We initialise the field just after the memcpy(), so it\u0027s\nnot a problem.\n\nHowever, when dev-\u003eaddr_len is greater than 22 (e.g. MAX_ADDR_LEN),\narp_netmask is overwritten, which could be set as htonl(0xFFFFFFFFUL)\nin arp_ioctl() before calling arp_req_get().\n\nTo avoid the overflow, let\u0027s limit the max length of memcpy().\n\nNote that commit b5f0de6df6dc (\"net: dev: Convert sa_data to flexible\narray in struct sockaddr\") just silenced syzkaller.\n\n[0]:\nmemcpy: detected field-spanning write (size 16) of single field \"r-\u003earp_ha.sa_data\" at net/ipv4/arp.c:1128 (size 14)\nWARNING: CPU: 0 PID: 144638 at net/ipv4/arp.c:1128 arp_req_get+0x411/0x4a0 net/ipv4/arp.c:1128\nModules linked in:\nCPU: 0 PID: 144638 Comm: syz-executor.4 Not tainted 6.1.74 #31\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.0-debian-1.16.0-5 04/01/2014\nRIP: 0010:arp_req_get+0x411/0x4a0 net/ipv4/arp.c:1128\nCode: fd ff ff e8 41 42 de fb b9 0e 00 00 00 4c 89 fe 48 c7 c2 20 6d ab 87 48 c7 c7 80 6d ab 87 c6 05 25 af 72 04 01 e8 5f 8d ad fb \u003c0f\u003e 0b e9 6c fd ff ff e8 13 42 de fb be 03 00 00 00 4c 89 e7 e8 a6\nRSP: 0018:ffffc900050b7998 EFLAGS: 00010286\nRAX: 0000000000000000 RBX: ffff88803a815000 RCX: 0000000000000000\nRDX: 0000000000000000 RSI: ffffffff8641a44a RDI: 0000000000000001\nRBP: ffffc900050b7a98 R08: 0000000000000001 R09: 0000000000000000\nR10: 0000000000000000 R11: 203a7970636d656d R12: ffff888039c54000\nR13: 1ffff92000a16f37 R14: ffff88803a815084 R15: 0000000000000010\nFS:  00007f172bf306c0(0000) GS:ffff88805aa00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 00007f172b3569f0 CR3: 0000000057f12005 CR4: 0000000000770ef0\nDR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\nDR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\nPKRU: 55555554\nCall Trace:\n \u003cTASK\u003e\n arp_ioctl+0x33f/0x4b0 net/ipv4/arp.c:1261\n inet_ioctl+0x314/0x3a0 net/ipv4/af_inet.c:981\n sock_do_ioctl+0xdf/0x260 net/socket.c:1204\n sock_ioctl+0x3ef/0x650 net/socket.c:1321\n vfs_ioctl fs/ioctl.c:51 [inline]\n __do_sys_ioctl fs/ioctl.c:870 [inline]\n __se_sys_ioctl fs/ioctl.c:856 [inline]\n __x64_sys_ioctl+0x18e/0x220 fs/ioctl.c:856\n do_syscall_x64 arch/x86/entry/common.c:51 [inline]\n do_syscall_64+0x37/0x90 arch/x86/entry/common.c:81\n entry_SYSCALL_64_after_hwframe+0x64/0xce\nRIP: 0033:0x7f172b262b8d\nCode: 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f172bf300b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 00007f172b3abf80 RCX: 00007f172b262b8d\nRDX: 0000000020000000 RSI: 0000000000008954 RDI: 0000000000000003\nRBP: 00007f172b2d3493 R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000000b R14: 00007f172b3abf80 R15: 00007f172bf10000\n \u003c/TASK\u003e"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:55:10.662Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/dbc9b22d0ed319b4e29034ce0a3fe32a3ee2c587"
        },
        {
          "url": "https://git.kernel.org/stable/c/97eaa2955db4120ce6ec2ef123e860bc32232c50"
        },
        {
          "url": "https://git.kernel.org/stable/c/f119f2325ba70cbfdec701000dcad4d88805d5b0"
        },
        {
          "url": "https://git.kernel.org/stable/c/a3f2c083cb575d80a7627baf3339e78fedccbb91"
        },
        {
          "url": "https://git.kernel.org/stable/c/3ab0d6f8289ba8402ca95a9fc61a34909d5e1f3a"
        },
        {
          "url": "https://git.kernel.org/stable/c/a7d6027790acea24446ddd6632d394096c0f4667"
        }
      ],
      "title": "arp: Prevent overflow in arp_req_get().",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26733",
    "datePublished": "2024-04-03T17:00:20.437Z",
    "dateReserved": "2024-02-19T14:20:24.165Z",
    "dateUpdated": "2025-05-04T08:55:10.662Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27062 (GCVE-0-2024-27062)

Vulnerability from cvelistv5

Published

2024-05-01 13:00

Modified

2025-05-04 09:03

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: nouveau: lock the client object tree. It appears the client object tree has no locking unless I've missed something else. Fix races around adding/removing client objects, mostly vram bar mappings. 4562.099306] general protection fault, probably for non-canonical address 0x6677ed422bceb80c: 0000 [#1] PREEMPT SMP PTI [ 4562.099314] CPU: 2 PID: 23171 Comm: deqp-vk Not tainted 6.8.0-rc6+ #27 [ 4562.099324] Hardware name: Gigabyte Technology Co., Ltd. Z390 I AORUS PRO WIFI/Z390 I AORUS PRO WIFI-CF, BIOS F8 11/05/2021 [ 4562.099330] RIP: 0010:nvkm_object_search+0x1d/0x70 [nouveau] [ 4562.099503] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 0f 1f 44 00 00 48 89 f8 48 85 f6 74 39 48 8b 87 a0 00 00 00 48 85 c0 74 12 <48> 8b 48 f8 48 39 ce 73 15 48 8b 40 10 48 85 c0 75 ee 48 c7 c0 fe [ 4562.099506] RSP: 0000:ffffa94cc420bbf8 EFLAGS: 00010206 [ 4562.099512] RAX: 6677ed422bceb814 RBX: ffff98108791f400 RCX: ffff9810f26b8f58 [ 4562.099517] RDX: 0000000000000000 RSI: ffff9810f26b9158 RDI: ffff98108791f400 [ 4562.099519] RBP: ffff9810f26b9158 R08: 0000000000000000 R09: 0000000000000000 [ 4562.099521] R10: ffffa94cc420bc48 R11: 0000000000000001 R12: ffff9810f02a7cc0 [ 4562.099526] R13: 0000000000000000 R14: 00000000000000ff R15: 0000000000000007 [ 4562.099528] FS: 00007f629c5017c0(0000) GS:ffff98142c700000(0000) knlGS:0000000000000000 [ 4562.099534] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 4562.099536] CR2: 00007f629a882000 CR3: 000000017019e004 CR4: 00000000003706f0 [ 4562.099541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 4562.099542] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 4562.099544] Call Trace: [ 4562.099555] <TASK> [ 4562.099573] ? die_addr+0x36/0x90 [ 4562.099583] ? exc_general_protection+0x246/0x4a0 [ 4562.099593] ? asm_exc_general_protection+0x26/0x30 [ 4562.099600] ? nvkm_object_search+0x1d/0x70 [nouveau] [ 4562.099730] nvkm_ioctl+0xa1/0x250 [nouveau] [ 4562.099861] nvif_object_map_handle+0xc8/0x180 [nouveau] [ 4562.099986] nouveau_ttm_io_mem_reserve+0x122/0x270 [nouveau] [ 4562.100156] ? dma_resv_test_signaled+0x26/0xb0 [ 4562.100163] ttm_bo_vm_fault_reserved+0x97/0x3c0 [ttm] [ 4562.100182] ? __mutex_unlock_slowpath+0x2a/0x270 [ 4562.100189] nouveau_ttm_fault+0x69/0xb0 [nouveau] [ 4562.100356] __do_fault+0x32/0x150 [ 4562.100362] do_fault+0x7c/0x560 [ 4562.100369] __handle_mm_fault+0x800/0xc10 [ 4562.100382] handle_mm_fault+0x17c/0x3e0 [ 4562.100388] do_user_addr_fault+0x208/0x860 [ 4562.100395] exc_page_fault+0x7f/0x200 [ 4562.100402] asm_exc_page_fault+0x26/0x30 [ 4562.100412] RIP: 0033:0x9b9870 [ 4562.100419] Code: 85 a8 f7 ff ff 8b 8d 80 f7 ff ff 89 08 e9 18 f2 ff ff 0f 1f 84 00 00 00 00 00 44 89 32 e9 90 fa ff ff 0f 1f 84 00 00 00 00 00 <44> 89 32 e9 f8 f1 ff ff 0f 1f 84 00 00 00 00 00 66 44 89 32 e9 e7 [ 4562.100422] RSP: 002b:00007fff9ba2dc70 EFLAGS: 00010246 [ 4562.100426] RAX: 0000000000000004 RBX: 000000000dd65e10 RCX: 000000fff0000000 [ 4562.100428] RDX: 00007f629a882000 RSI: 00007f629a882000 RDI: 0000000000000066 [ 4562.100432] RBP: 00007fff9ba2e570 R08: 0000000000000000 R09: 0000000123ddf000 [ 4562.100434] R10: 0000000000000001 R11: 0000000000000246 R12: 000000007fffffff [ 4562.100436] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 4562.100446] </TASK> [ 4562.100448] Modules linked in: nf_conntrack_netbios_ns nf_conntrack_broadcast nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables libcrc32c nfnetlink cmac bnep sunrpc iwlmvm intel_rapl_msr intel_rapl_common snd_sof_pci_intel_cnl x86_pkg_temp_thermal intel_powerclamp snd_sof_intel_hda_common mac80211 coretemp snd_soc_acpi_intel_match kvm_intel snd_soc_acpi snd_soc_hdac_hda snd_sof_pci snd_sof_xtensa_dsp snd_sof_intel_hda_mlink ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/6887314f5356389fc219b8152e951ac084a10ef7
	https://git.kernel.org/stable/c/96c8751844171af4b3898fee3857ee180586f589
	https://git.kernel.org/stable/c/b7cc4ff787a572edf2c55caeffaa88cd801eb135

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-27062",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-06T18:29:48.801156Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-05T16:56:45.613Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.884Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6887314f5356389fc219b8152e951ac084a10ef7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/96c8751844171af4b3898fee3857ee180586f589"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b7cc4ff787a572edf2c55caeffaa88cd801eb135"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/nouveau/include/nvkm/core/client.h",
            "drivers/gpu/drm/nouveau/nvkm/core/client.c",
            "drivers/gpu/drm/nouveau/nvkm/core/object.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "6887314f5356389fc219b8152e951ac084a10ef7",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "96c8751844171af4b3898fee3857ee180586f589",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b7cc4ff787a572edf2c55caeffaa88cd801eb135",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/nouveau/include/nvkm/core/client.h",
            "drivers/gpu/drm/nouveau/nvkm/core/client.c",
            "drivers/gpu/drm/nouveau/nvkm/core/object.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnouveau: lock the client object tree.\n\nIt appears the client object tree has no locking unless I\u0027ve missed\nsomething else. Fix races around adding/removing client objects,\nmostly vram bar mappings.\n\n 4562.099306] general protection fault, probably for non-canonical address 0x6677ed422bceb80c: 0000 [#1] PREEMPT SMP PTI\n[ 4562.099314] CPU: 2 PID: 23171 Comm: deqp-vk Not tainted 6.8.0-rc6+ #27\n[ 4562.099324] Hardware name: Gigabyte Technology Co., Ltd. Z390 I AORUS PRO WIFI/Z390 I AORUS PRO WIFI-CF, BIOS F8 11/05/2021\n[ 4562.099330] RIP: 0010:nvkm_object_search+0x1d/0x70 [nouveau]\n[ 4562.099503] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 0f 1f 44 00 00 48 89 f8 48 85 f6 74 39 48 8b 87 a0 00 00 00 48 85 c0 74 12 \u003c48\u003e 8b 48 f8 48 39 ce 73 15 48 8b 40 10 48 85 c0 75 ee 48 c7 c0 fe\n[ 4562.099506] RSP: 0000:ffffa94cc420bbf8 EFLAGS: 00010206\n[ 4562.099512] RAX: 6677ed422bceb814 RBX: ffff98108791f400 RCX: ffff9810f26b8f58\n[ 4562.099517] RDX: 0000000000000000 RSI: ffff9810f26b9158 RDI: ffff98108791f400\n[ 4562.099519] RBP: ffff9810f26b9158 R08: 0000000000000000 R09: 0000000000000000\n[ 4562.099521] R10: ffffa94cc420bc48 R11: 0000000000000001 R12: ffff9810f02a7cc0\n[ 4562.099526] R13: 0000000000000000 R14: 00000000000000ff R15: 0000000000000007\n[ 4562.099528] FS:  00007f629c5017c0(0000) GS:ffff98142c700000(0000) knlGS:0000000000000000\n[ 4562.099534] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4562.099536] CR2: 00007f629a882000 CR3: 000000017019e004 CR4: 00000000003706f0\n[ 4562.099541] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[ 4562.099542] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[ 4562.099544] Call Trace:\n[ 4562.099555]  \u003cTASK\u003e\n[ 4562.099573]  ? die_addr+0x36/0x90\n[ 4562.099583]  ? exc_general_protection+0x246/0x4a0\n[ 4562.099593]  ? asm_exc_general_protection+0x26/0x30\n[ 4562.099600]  ? nvkm_object_search+0x1d/0x70 [nouveau]\n[ 4562.099730]  nvkm_ioctl+0xa1/0x250 [nouveau]\n[ 4562.099861]  nvif_object_map_handle+0xc8/0x180 [nouveau]\n[ 4562.099986]  nouveau_ttm_io_mem_reserve+0x122/0x270 [nouveau]\n[ 4562.100156]  ? dma_resv_test_signaled+0x26/0xb0\n[ 4562.100163]  ttm_bo_vm_fault_reserved+0x97/0x3c0 [ttm]\n[ 4562.100182]  ? __mutex_unlock_slowpath+0x2a/0x270\n[ 4562.100189]  nouveau_ttm_fault+0x69/0xb0 [nouveau]\n[ 4562.100356]  __do_fault+0x32/0x150\n[ 4562.100362]  do_fault+0x7c/0x560\n[ 4562.100369]  __handle_mm_fault+0x800/0xc10\n[ 4562.100382]  handle_mm_fault+0x17c/0x3e0\n[ 4562.100388]  do_user_addr_fault+0x208/0x860\n[ 4562.100395]  exc_page_fault+0x7f/0x200\n[ 4562.100402]  asm_exc_page_fault+0x26/0x30\n[ 4562.100412] RIP: 0033:0x9b9870\n[ 4562.100419] Code: 85 a8 f7 ff ff 8b 8d 80 f7 ff ff 89 08 e9 18 f2 ff ff 0f 1f 84 00 00 00 00 00 44 89 32 e9 90 fa ff ff 0f 1f 84 00 00 00 00 00 \u003c44\u003e 89 32 e9 f8 f1 ff ff 0f 1f 84 00 00 00 00 00 66 44 89 32 e9 e7\n[ 4562.100422] RSP: 002b:00007fff9ba2dc70 EFLAGS: 00010246\n[ 4562.100426] RAX: 0000000000000004 RBX: 000000000dd65e10 RCX: 000000fff0000000\n[ 4562.100428] RDX: 00007f629a882000 RSI: 00007f629a882000 RDI: 0000000000000066\n[ 4562.100432] RBP: 00007fff9ba2e570 R08: 0000000000000000 R09: 0000000123ddf000\n[ 4562.100434] R10: 0000000000000001 R11: 0000000000000246 R12: 000000007fffffff\n[ 4562.100436] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n[ 4562.100446]  \u003c/TASK\u003e\n[ 4562.100448] Modules linked in: nf_conntrack_netbios_ns nf_conntrack_broadcast nft_fib_inet nft_fib_ipv4 nft_fib_ipv6 nft_fib nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_ct nft_chain_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 ip_set nf_tables libcrc32c nfnetlink cmac bnep sunrpc iwlmvm intel_rapl_msr intel_rapl_common snd_sof_pci_intel_cnl x86_pkg_temp_thermal intel_powerclamp snd_sof_intel_hda_common mac80211 coretemp snd_soc_acpi_intel_match kvm_intel snd_soc_acpi snd_soc_hdac_hda snd_sof_pci snd_sof_xtensa_dsp snd_sof_intel_hda_mlink \n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:03:23.511Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/6887314f5356389fc219b8152e951ac084a10ef7"
        },
        {
          "url": "https://git.kernel.org/stable/c/96c8751844171af4b3898fee3857ee180586f589"
        },
        {
          "url": "https://git.kernel.org/stable/c/b7cc4ff787a572edf2c55caeffaa88cd801eb135"
        }
      ],
      "title": "nouveau: lock the client object tree.",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27062",
    "datePublished": "2024-05-01T13:00:21.052Z",
    "dateReserved": "2024-02-19T14:20:24.215Z",
    "dateUpdated": "2025-05-04T09:03:23.511Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48690 (GCVE-0-2022-48690)

Vulnerability from cvelistv5

Published

2024-05-03 17:44

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ice: Fix DMA mappings leak Fix leak, when user changes ring parameters. During reallocation of RX buffers, new DMA mappings are created for those buffers. New buffers with different RX ring count should substitute older ones, but those buffers were freed in ice_vsi_cfg_rxq and reallocated again with ice_alloc_rx_buf. kfree on rx_buf caused leak of already mapped DMA. Reallocate ZC with xdp_buf struct, when BPF program loads. Reallocate back to rx_buf, when BPF program unloads. If BPF program is loaded/unloaded and XSK pools are created, reallocate RX queues accordingly in XDP_SETUP_XSK_POOL handler. Steps for reproduction: while : do for ((i=0; i<=8160; i=i+32)) do ethtool -G enp130s0f0 rx $i tx $i sleep 0.5 ethtool -g enp130s0f0 done done

References

►

URL

Tags

	https://git.kernel.org/stable/c/07f40e9f0ff342eb3e97d5c544783b7cb641689c
	https://git.kernel.org/stable/c/7e753eb675f0523207b184558638ee2eed6c9ac2

Impacted products

Vendor

Product

Version

►

Linux

Version: 617f3e1b588c802517c236087561c6bcb0b4afd6
Version: 617f3e1b588c802517c236087561c6bcb0b4afd6

Linux

Version: 5.16

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48690",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:39:48.743720Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:44:28.370Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.727Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/07f40e9f0ff342eb3e97d5c544783b7cb641689c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7e753eb675f0523207b184558638ee2eed6c9ac2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/ice/ice_base.c",
            "drivers/net/ethernet/intel/ice/ice_main.c",
            "drivers/net/ethernet/intel/ice/ice_xsk.c",
            "drivers/net/ethernet/intel/ice/ice_xsk.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "07f40e9f0ff342eb3e97d5c544783b7cb641689c",
              "status": "affected",
              "version": "617f3e1b588c802517c236087561c6bcb0b4afd6",
              "versionType": "git"
            },
            {
              "lessThan": "7e753eb675f0523207b184558638ee2eed6c9ac2",
              "status": "affected",
              "version": "617f3e1b588c802517c236087561c6bcb0b4afd6",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/ice/ice_base.c",
            "drivers/net/ethernet/intel/ice/ice_main.c",
            "drivers/net/ethernet/intel/ice/ice_xsk.c",
            "drivers/net/ethernet/intel/ice/ice_xsk.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.16"
            },
            {
              "lessThan": "5.16",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "5.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix DMA mappings leak\n\nFix leak, when user changes ring parameters.\nDuring reallocation of RX buffers, new DMA mappings are created for\nthose buffers. New buffers with different RX ring count should\nsubstitute older ones, but those buffers were freed in ice_vsi_cfg_rxq\nand reallocated again with ice_alloc_rx_buf. kfree on rx_buf caused\nleak of already mapped DMA.\nReallocate ZC with xdp_buf struct, when BPF program loads. Reallocate\nback to rx_buf, when BPF program unloads.\nIf BPF program is loaded/unloaded and XSK pools are created, reallocate\nRX queues accordingly in XDP_SETUP_XSK_POOL handler.\n\nSteps for reproduction:\nwhile :\ndo\n\tfor ((i=0; i\u003c=8160; i=i+32))\n\tdo\n\t\tethtool -G enp130s0f0 rx $i tx $i\n\t\tsleep 0.5\n\t\tethtool -g enp130s0f0\n\tdone\ndone"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:08.464Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/07f40e9f0ff342eb3e97d5c544783b7cb641689c"
        },
        {
          "url": "https://git.kernel.org/stable/c/7e753eb675f0523207b184558638ee2eed6c9ac2"
        }
      ],
      "title": "ice: Fix DMA mappings leak",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48690",
    "datePublished": "2024-05-03T17:44:31.180Z",
    "dateReserved": "2024-05-03T14:55:07.144Z",
    "dateUpdated": "2025-05-04T08:21:08.464Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48703 (GCVE-0-2022-48703)

Vulnerability from cvelistv5

Published

2024-05-03 15:14

Modified

2025-07-17 16:55

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: thermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR In some case, the GDDV returns a package with a buffer which has zero length. It causes that kmemdup() returns ZERO_SIZE_PTR (0x10). Then the data_vault_read() got NULL point dereference problem when accessing the 0x10 value in data_vault. [ 71.024560] BUG: kernel NULL pointer dereference, address: 0000000000000010 This patch uses ZERO_OR_NULL_PTR() for checking ZERO_SIZE_PTR or NULL value in data_vault.

References

►

URL

Tags

	https://git.kernel.org/stable/c/39d5137085a6c37ace4680ee4d24020a4a03e7dc
	https://git.kernel.org/stable/c/dae42083b045a4ddf71c57cf350cb2412b5915c2
	https://git.kernel.org/stable/c/7931e28098a4c1a2a6802510b0cbe57546d2049d

Impacted products

Vendor

Product

Version

►

Linux

Version: 0ba13c763aacb27ab32bde5d559bf40e88465921
Version: 0ba13c763aacb27ab32bde5d559bf40e88465921
Version: 0ba13c763aacb27ab32bde5d559bf40e88465921

Linux

Version: 5.8

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48703",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:39:52.003733Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:44:38.505Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.767Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dae42083b045a4ddf71c57cf350cb2412b5915c2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7931e28098a4c1a2a6802510b0cbe57546d2049d"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/thermal/intel/int340x_thermal/int3400_thermal.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "39d5137085a6c37ace4680ee4d24020a4a03e7dc",
              "status": "affected",
              "version": "0ba13c763aacb27ab32bde5d559bf40e88465921",
              "versionType": "git"
            },
            {
              "lessThan": "dae42083b045a4ddf71c57cf350cb2412b5915c2",
              "status": "affected",
              "version": "0ba13c763aacb27ab32bde5d559bf40e88465921",
              "versionType": "git"
            },
            {
              "lessThan": "7931e28098a4c1a2a6802510b0cbe57546d2049d",
              "status": "affected",
              "version": "0ba13c763aacb27ab32bde5d559bf40e88465921",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/thermal/intel/int340x_thermal/int3400_thermal.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.8"
            },
            {
              "lessThan": "5.8",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.189",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.189",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR\n\nIn some case, the GDDV returns a package with a buffer which has\nzero length. It causes that kmemdup() returns ZERO_SIZE_PTR (0x10).\n\nThen the data_vault_read() got NULL point dereference problem when\naccessing the 0x10 value in data_vault.\n\n[   71.024560] BUG: kernel NULL pointer dereference, address:\n0000000000000010\n\nThis patch uses ZERO_OR_NULL_PTR() for checking ZERO_SIZE_PTR or\nNULL value in data_vault."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-07-17T16:55:26.052Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/39d5137085a6c37ace4680ee4d24020a4a03e7dc"
        },
        {
          "url": "https://git.kernel.org/stable/c/dae42083b045a4ddf71c57cf350cb2412b5915c2"
        },
        {
          "url": "https://git.kernel.org/stable/c/7931e28098a4c1a2a6802510b0cbe57546d2049d"
        }
      ],
      "title": "thermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48703",
    "datePublished": "2024-05-03T15:14:07.390Z",
    "dateReserved": "2024-05-03T14:55:07.146Z",
    "dateUpdated": "2025-07-17T16:55:26.052Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47216 (GCVE-0-2021-47216)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: advansys: Fix kernel pointer leak Pointers should be printed with %p or %px rather than cast to 'unsigned long' and printed with %lx. Change %lx to %p to print the hashed pointer.

References

►

URL

Tags

	https://git.kernel.org/stable/c/06d7d12efb5c62db9dea15141ae2b322c2719515
	https://git.kernel.org/stable/c/ad19f7046c24f95c674fbea21870479b2b9f5bab
	https://git.kernel.org/stable/c/5612287991debe310c914600599bd59511ababfb
	https://git.kernel.org/stable/c/f5a0ba4a9b5e70e7b2f767636d26523f9d1ac59d
	https://git.kernel.org/stable/c/cc248790bfdcf879e3094fa248c85bf92cdf9dae
	https://git.kernel.org/stable/c/055eced3edf5b675d12189081303f6285ef26511
	https://git.kernel.org/stable/c/27490ae6a85a70242d80615ca74d0362a820d6a7
	https://git.kernel.org/stable/c/d4996c6eac4c81b8872043e9391563f67f13e406

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.506Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/06d7d12efb5c62db9dea15141ae2b322c2719515"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ad19f7046c24f95c674fbea21870479b2b9f5bab"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5612287991debe310c914600599bd59511ababfb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f5a0ba4a9b5e70e7b2f767636d26523f9d1ac59d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cc248790bfdcf879e3094fa248c85bf92cdf9dae"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/055eced3edf5b675d12189081303f6285ef26511"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/27490ae6a85a70242d80615ca74d0362a820d6a7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d4996c6eac4c81b8872043e9391563f67f13e406"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47216",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:49:48.927137Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:35.251Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/advansys.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "06d7d12efb5c62db9dea15141ae2b322c2719515",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ad19f7046c24f95c674fbea21870479b2b9f5bab",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5612287991debe310c914600599bd59511ababfb",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f5a0ba4a9b5e70e7b2f767636d26523f9d1ac59d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "cc248790bfdcf879e3094fa248c85bf92cdf9dae",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "055eced3edf5b675d12189081303f6285ef26511",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "27490ae6a85a70242d80615ca74d0362a820d6a7",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "d4996c6eac4c81b8872043e9391563f67f13e406",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/advansys.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.4.*",
              "status": "unaffected",
              "version": "4.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.291",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.256",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.4.293",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.291",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.256",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: advansys: Fix kernel pointer leak\n\nPointers should be printed with %p or %px rather than cast to \u0027unsigned\nlong\u0027 and printed with %lx.\n\nChange %lx to %p to print the hashed pointer."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:31.740Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/06d7d12efb5c62db9dea15141ae2b322c2719515"
        },
        {
          "url": "https://git.kernel.org/stable/c/ad19f7046c24f95c674fbea21870479b2b9f5bab"
        },
        {
          "url": "https://git.kernel.org/stable/c/5612287991debe310c914600599bd59511ababfb"
        },
        {
          "url": "https://git.kernel.org/stable/c/f5a0ba4a9b5e70e7b2f767636d26523f9d1ac59d"
        },
        {
          "url": "https://git.kernel.org/stable/c/cc248790bfdcf879e3094fa248c85bf92cdf9dae"
        },
        {
          "url": "https://git.kernel.org/stable/c/055eced3edf5b675d12189081303f6285ef26511"
        },
        {
          "url": "https://git.kernel.org/stable/c/27490ae6a85a70242d80615ca74d0362a820d6a7"
        },
        {
          "url": "https://git.kernel.org/stable/c/d4996c6eac4c81b8872043e9391563f67f13e406"
        }
      ],
      "title": "scsi: advansys: Fix kernel pointer leak",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47216",
    "datePublished": "2024-04-10T19:01:55.779Z",
    "dateReserved": "2024-04-10T18:59:19.528Z",
    "dateUpdated": "2025-05-04T07:06:31.740Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48667 (GCVE-0-2022-48667)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: smb3: fix temporary data corruption in insert range insert range doesn't discard the affected cached region so can risk temporarily corrupting file data. Also includes some minor cleanup (avoiding rereading inode size repeatedly unnecessarily) to make it clearer.

References

►

URL

Tags

	https://git.kernel.org/stable/c/0cdde8460c304283d4ebe3f767a70215d1ab9d4e
	https://git.kernel.org/stable/c/9c8b7a293f50253e694f19161c045817a938e551

Impacted products

Vendor

Product

Version

►

Linux

Version: 7fe6fe95b936084dce6eedcc2cccadf96eafae73
Version: 7fe6fe95b936084dce6eedcc2cccadf96eafae73

Linux

Version: 5.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48667",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:39:55.074234Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:44.685Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.885Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0cdde8460c304283d4ebe3f767a70215d1ab9d4e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9c8b7a293f50253e694f19161c045817a938e551"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/cifs/smb2ops.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "0cdde8460c304283d4ebe3f767a70215d1ab9d4e",
              "status": "affected",
              "version": "7fe6fe95b936084dce6eedcc2cccadf96eafae73",
              "versionType": "git"
            },
            {
              "lessThan": "9c8b7a293f50253e694f19161c045817a938e551",
              "status": "affected",
              "version": "7fe6fe95b936084dce6eedcc2cccadf96eafae73",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/cifs/smb2ops.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.13"
            },
            {
              "lessThan": "5.13",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix temporary data corruption in insert range\n\ninsert range doesn\u0027t discard the affected cached region\nso can risk temporarily corrupting file data.\n\nAlso includes some minor cleanup (avoiding rereading\ninode size repeatedly unnecessarily) to make it clearer."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:53.623Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/0cdde8460c304283d4ebe3f767a70215d1ab9d4e"
        },
        {
          "url": "https://git.kernel.org/stable/c/9c8b7a293f50253e694f19161c045817a938e551"
        }
      ],
      "title": "smb3: fix temporary data corruption in insert range",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48667",
    "datePublished": "2024-04-28T13:01:54.693Z",
    "dateReserved": "2024-02-25T13:44:28.320Z",
    "dateUpdated": "2025-05-04T08:20:53.623Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48675 (GCVE-0-2022-48675)

Vulnerability from cvelistv5

Published

2024-05-03 14:52

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: IB/core: Fix a nested dead lock as part of ODP flow Fix a nested dead lock as part of ODP flow by using mmput_async(). From the below call trace [1] can see that calling mmput() once we have the umem_odp->umem_mutex locked as required by ib_umem_odp_map_dma_and_lock() might trigger in the same task the exit_mmap()->__mmu_notifier_release()->mlx5_ib_invalidate_range() which may dead lock when trying to lock the same mutex. Moving to use mmput_async() will solve the problem as the above exit_mmap() flow will be called in other task and will be executed once the lock will be available. [1] [64843.077665] task:kworker/u133:2 state:D stack: 0 pid:80906 ppid: 2 flags:0x00004000 [64843.077672] Workqueue: mlx5_ib_page_fault mlx5_ib_eqe_pf_action [mlx5_ib] [64843.077719] Call Trace: [64843.077722] <TASK> [64843.077724] __schedule+0x23d/0x590 [64843.077729] schedule+0x4e/0xb0 [64843.077735] schedule_preempt_disabled+0xe/0x10 [64843.077740] __mutex_lock.constprop.0+0x263/0x490 [64843.077747] __mutex_lock_slowpath+0x13/0x20 [64843.077752] mutex_lock+0x34/0x40 [64843.077758] mlx5_ib_invalidate_range+0x48/0x270 [mlx5_ib] [64843.077808] __mmu_notifier_release+0x1a4/0x200 [64843.077816] exit_mmap+0x1bc/0x200 [64843.077822] ? walk_page_range+0x9c/0x120 [64843.077828] ? __cond_resched+0x1a/0x50 [64843.077833] ? mutex_lock+0x13/0x40 [64843.077839] ? uprobe_clear_state+0xac/0x120 [64843.077860] mmput+0x5f/0x140 [64843.077867] ib_umem_odp_map_dma_and_lock+0x21b/0x580 [ib_core] [64843.077931] pagefault_real_mr+0x9a/0x140 [mlx5_ib] [64843.077962] pagefault_mr+0xb4/0x550 [mlx5_ib] [64843.077992] pagefault_single_data_segment.constprop.0+0x2ac/0x560 [mlx5_ib] [64843.078022] mlx5_ib_eqe_pf_action+0x528/0x780 [mlx5_ib] [64843.078051] process_one_work+0x22b/0x3d0 [64843.078059] worker_thread+0x53/0x410 [64843.078065] ? process_one_work+0x3d0/0x3d0 [64843.078073] kthread+0x12a/0x150 [64843.078079] ? set_kthread_struct+0x50/0x50 [64843.078085] ret_from_fork+0x22/0x30 [64843.078093] </TASK>

References

►

URL

Tags

	https://git.kernel.org/stable/c/e8de6cb5755eae7b793d8c00c8696c8667d44a7f
	https://git.kernel.org/stable/c/819110054b14d7272b4188db997a3d80f75ab785
	https://git.kernel.org/stable/c/83c43fd872e32c8071d5582eb7c40f573a8342f3
	https://git.kernel.org/stable/c/85eaeb5058f0f04dffb124c97c86b4f18db0b833

Impacted products

Vendor

Product

Version

►

Linux

Version: 36f30e486dce22345c2dd3a3ba439c12cd67f6ba
Version: 36f30e486dce22345c2dd3a3ba439c12cd67f6ba
Version: 36f30e486dce22345c2dd3a3ba439c12cd67f6ba
Version: 36f30e486dce22345c2dd3a3ba439c12cd67f6ba

Linux

Version: 5.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48675",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-31T18:55:21.563051Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:38.659Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.742Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e8de6cb5755eae7b793d8c00c8696c8667d44a7f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/819110054b14d7272b4188db997a3d80f75ab785"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/83c43fd872e32c8071d5582eb7c40f573a8342f3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/85eaeb5058f0f04dffb124c97c86b4f18db0b833"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/core/umem_odp.c",
            "kernel/fork.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e8de6cb5755eae7b793d8c00c8696c8667d44a7f",
              "status": "affected",
              "version": "36f30e486dce22345c2dd3a3ba439c12cd67f6ba",
              "versionType": "git"
            },
            {
              "lessThan": "819110054b14d7272b4188db997a3d80f75ab785",
              "status": "affected",
              "version": "36f30e486dce22345c2dd3a3ba439c12cd67f6ba",
              "versionType": "git"
            },
            {
              "lessThan": "83c43fd872e32c8071d5582eb7c40f573a8342f3",
              "status": "affected",
              "version": "36f30e486dce22345c2dd3a3ba439c12cd67f6ba",
              "versionType": "git"
            },
            {
              "lessThan": "85eaeb5058f0f04dffb124c97c86b4f18db0b833",
              "status": "affected",
              "version": "36f30e486dce22345c2dd3a3ba439c12cd67f6ba",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/core/umem_odp.c",
            "kernel/fork.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/core: Fix a nested dead lock as part of ODP flow\n\nFix a nested dead lock as part of ODP flow by using mmput_async().\n\nFrom the below call trace [1] can see that calling mmput() once we have\nthe umem_odp-\u003eumem_mutex locked as required by\nib_umem_odp_map_dma_and_lock() might trigger in the same task the\nexit_mmap()-\u003e__mmu_notifier_release()-\u003emlx5_ib_invalidate_range() which\nmay dead lock when trying to lock the same mutex.\n\nMoving to use mmput_async() will solve the problem as the above\nexit_mmap() flow will be called in other task and will be executed once\nthe lock will be available.\n\n[1]\n[64843.077665] task:kworker/u133:2  state:D stack:    0 pid:80906 ppid:\n2 flags:0x00004000\n[64843.077672] Workqueue: mlx5_ib_page_fault mlx5_ib_eqe_pf_action [mlx5_ib]\n[64843.077719] Call Trace:\n[64843.077722]  \u003cTASK\u003e\n[64843.077724]  __schedule+0x23d/0x590\n[64843.077729]  schedule+0x4e/0xb0\n[64843.077735]  schedule_preempt_disabled+0xe/0x10\n[64843.077740]  __mutex_lock.constprop.0+0x263/0x490\n[64843.077747]  __mutex_lock_slowpath+0x13/0x20\n[64843.077752]  mutex_lock+0x34/0x40\n[64843.077758]  mlx5_ib_invalidate_range+0x48/0x270 [mlx5_ib]\n[64843.077808]  __mmu_notifier_release+0x1a4/0x200\n[64843.077816]  exit_mmap+0x1bc/0x200\n[64843.077822]  ? walk_page_range+0x9c/0x120\n[64843.077828]  ? __cond_resched+0x1a/0x50\n[64843.077833]  ? mutex_lock+0x13/0x40\n[64843.077839]  ? uprobe_clear_state+0xac/0x120\n[64843.077860]  mmput+0x5f/0x140\n[64843.077867]  ib_umem_odp_map_dma_and_lock+0x21b/0x580 [ib_core]\n[64843.077931]  pagefault_real_mr+0x9a/0x140 [mlx5_ib]\n[64843.077962]  pagefault_mr+0xb4/0x550 [mlx5_ib]\n[64843.077992]  pagefault_single_data_segment.constprop.0+0x2ac/0x560\n[mlx5_ib]\n[64843.078022]  mlx5_ib_eqe_pf_action+0x528/0x780 [mlx5_ib]\n[64843.078051]  process_one_work+0x22b/0x3d0\n[64843.078059]  worker_thread+0x53/0x410\n[64843.078065]  ? process_one_work+0x3d0/0x3d0\n[64843.078073]  kthread+0x12a/0x150\n[64843.078079]  ? set_kthread_struct+0x50/0x50\n[64843.078085]  ret_from_fork+0x22/0x30\n[64843.078093]  \u003c/TASK\u003e"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:02.482Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e8de6cb5755eae7b793d8c00c8696c8667d44a7f"
        },
        {
          "url": "https://git.kernel.org/stable/c/819110054b14d7272b4188db997a3d80f75ab785"
        },
        {
          "url": "https://git.kernel.org/stable/c/83c43fd872e32c8071d5582eb7c40f573a8342f3"
        },
        {
          "url": "https://git.kernel.org/stable/c/85eaeb5058f0f04dffb124c97c86b4f18db0b833"
        }
      ],
      "title": "IB/core: Fix a nested dead lock as part of ODP flow",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48675",
    "datePublished": "2024-05-03T14:52:06.518Z",
    "dateReserved": "2024-02-25T13:44:28.322Z",
    "dateUpdated": "2025-05-04T08:21:02.482Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47214 (GCVE-0-2021-47214)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 12:41

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: hugetlb, userfaultfd: fix reservation restore on userfaultfd error Currently in the is_continue case in hugetlb_mcopy_atomic_pte(), if we bail out using "goto out_release_unlock;" in the cases where idx >= size, or !huge_pte_none(), the code will detect that new_pagecache_page == false, and so call restore_reserve_on_error(). In this case I see restore_reserve_on_error() delete the reservation, and the following call to remove_inode_hugepages() will increment h->resv_hugepages causing a 100% reproducible leak. We should treat the is_continue case similar to adding a page into the pagecache and set new_pagecache_page to true, to indicate that there is no reservation to restore on the error path, and we need not call restore_reserve_on_error(). Rename new_pagecache_page to page_in_pagecache to make that clear.

References

►

URL

Tags

	https://git.kernel.org/stable/c/b5069d44e2fbc4a9093d005b3ef0949add3dd27e
	https://git.kernel.org/stable/c/cc30042df6fcc82ea18acf0dace831503e60a0b7

Impacted products

Vendor

Product

Version

►

Linux

Version: c7b1850dfb41d0b4154aca8dbc04777fbd75616f
Version: c7b1850dfb41d0b4154aca8dbc04777fbd75616f
Version: 515b6124df6a84c957c5cc6bb6e8309dae7b1e9c

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47214",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-12T16:35:56.915589Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:14:20.656Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.447Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b5069d44e2fbc4a9093d005b3ef0949add3dd27e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cc30042df6fcc82ea18acf0dace831503e60a0b7"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "mm/hugetlb.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b5069d44e2fbc4a9093d005b3ef0949add3dd27e",
              "status": "affected",
              "version": "c7b1850dfb41d0b4154aca8dbc04777fbd75616f",
              "versionType": "git"
            },
            {
              "lessThan": "cc30042df6fcc82ea18acf0dace831503e60a0b7",
              "status": "affected",
              "version": "c7b1850dfb41d0b4154aca8dbc04777fbd75616f",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "515b6124df6a84c957c5cc6bb6e8309dae7b1e9c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "mm/hugetlb.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.13.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nhugetlb, userfaultfd: fix reservation restore on userfaultfd error\n\nCurrently in the is_continue case in hugetlb_mcopy_atomic_pte(), if we\nbail out using \"goto out_release_unlock;\" in the cases where idx \u003e=\nsize, or !huge_pte_none(), the code will detect that new_pagecache_page\n== false, and so call restore_reserve_on_error().  In this case I see\nrestore_reserve_on_error() delete the reservation, and the following\ncall to remove_inode_hugepages() will increment h-\u003eresv_hugepages\ncausing a 100% reproducible leak.\n\nWe should treat the is_continue case similar to adding a page into the\npagecache and set new_pagecache_page to true, to indicate that there is\nno reservation to restore on the error path, and we need not call\nrestore_reserve_on_error().  Rename new_pagecache_page to\npage_in_pagecache to make that clear."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:41:16.227Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b5069d44e2fbc4a9093d005b3ef0949add3dd27e"
        },
        {
          "url": "https://git.kernel.org/stable/c/cc30042df6fcc82ea18acf0dace831503e60a0b7"
        }
      ],
      "title": "hugetlb, userfaultfd: fix reservation restore on userfaultfd error",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47214",
    "datePublished": "2024-04-10T19:01:54.543Z",
    "dateReserved": "2024-04-10T18:59:19.528Z",
    "dateUpdated": "2025-05-04T12:41:16.227Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47218 (GCVE-0-2021-47218)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: selinux: fix NULL-pointer dereference when hashtab allocation fails When the hash table slot array allocation fails in hashtab_init(), h->size is left initialized with a non-zero value, but the h->htable pointer is NULL. This may then cause a NULL pointer dereference, since the policydb code relies on the assumption that even after a failed hashtab_init(), hashtab_map() and hashtab_destroy() can be safely called on it. Yet, these detect an empty hashtab only by looking at the size. Fix this by making sure that hashtab_init() always leaves behind a valid empty hashtab when the allocation fails.

References

►

URL

Tags

	https://git.kernel.org/stable/c/b17dd53cac769dd13031b0ca34f90cc65e523fab
	https://git.kernel.org/stable/c/83c8ab8503adf56bf68dafc7a382f4946c87da79
	https://git.kernel.org/stable/c/dc27f3c5d10c58069672215787a96b4fae01818b

Impacted products

Vendor

Product

Version

►

Linux

Version: 03414a49ad5f3c56988c36d2070e402ffa17feaf
Version: 03414a49ad5f3c56988c36d2070e402ffa17feaf
Version: 03414a49ad5f3c56988c36d2070e402ffa17feaf

Linux

Version: 5.8

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47218",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-15T15:01:50.328604Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-03T17:45:07.734Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.363Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b17dd53cac769dd13031b0ca34f90cc65e523fab"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/83c8ab8503adf56bf68dafc7a382f4946c87da79"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dc27f3c5d10c58069672215787a96b4fae01818b"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "security/selinux/ss/hashtab.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b17dd53cac769dd13031b0ca34f90cc65e523fab",
              "status": "affected",
              "version": "03414a49ad5f3c56988c36d2070e402ffa17feaf",
              "versionType": "git"
            },
            {
              "lessThan": "83c8ab8503adf56bf68dafc7a382f4946c87da79",
              "status": "affected",
              "version": "03414a49ad5f3c56988c36d2070e402ffa17feaf",
              "versionType": "git"
            },
            {
              "lessThan": "dc27f3c5d10c58069672215787a96b4fae01818b",
              "status": "affected",
              "version": "03414a49ad5f3c56988c36d2070e402ffa17feaf",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "security/selinux/ss/hashtab.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.8"
            },
            {
              "lessThan": "5.8",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nselinux: fix NULL-pointer dereference when hashtab allocation fails\n\nWhen the hash table slot array allocation fails in hashtab_init(),\nh-\u003esize is left initialized with a non-zero value, but the h-\u003ehtable\npointer is NULL. This may then cause a NULL pointer dereference, since\nthe policydb code relies on the assumption that even after a failed\nhashtab_init(), hashtab_map() and hashtab_destroy() can be safely called\non it. Yet, these detect an empty hashtab only by looking at the size.\n\nFix this by making sure that hashtab_init() always leaves behind a valid\nempty hashtab when the allocation fails."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:33.960Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b17dd53cac769dd13031b0ca34f90cc65e523fab"
        },
        {
          "url": "https://git.kernel.org/stable/c/83c8ab8503adf56bf68dafc7a382f4946c87da79"
        },
        {
          "url": "https://git.kernel.org/stable/c/dc27f3c5d10c58069672215787a96b4fae01818b"
        }
      ],
      "title": "selinux: fix NULL-pointer dereference when hashtab allocation fails",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47218",
    "datePublished": "2024-04-10T19:01:57.060Z",
    "dateReserved": "2024-04-10T18:59:19.528Z",
    "dateUpdated": "2025-05-04T07:06:33.960Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26877 (GCVE-0-2024-26877)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: crypto: xilinx - call finalize with bh disabled When calling crypto_finalize_request, BH should be disabled to avoid triggering the following calltrace: ------------[ cut here ]------------ WARNING: CPU: 2 PID: 74 at crypto/crypto_engine.c:58 crypto_finalize_request+0xa0/0x118 Modules linked in: cryptodev(O) CPU: 2 PID: 74 Comm: firmware:zynqmp Tainted: G O 6.8.0-rc1-yocto-standard #323 Hardware name: ZynqMP ZCU102 Rev1.0 (DT) pstate: 40000005 (nZcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : crypto_finalize_request+0xa0/0x118 lr : crypto_finalize_request+0x104/0x118 sp : ffffffc085353ce0 x29: ffffffc085353ce0 x28: 0000000000000000 x27: ffffff8808ea8688 x26: ffffffc081715038 x25: 0000000000000000 x24: ffffff880100db00 x23: ffffff880100da80 x22: 0000000000000000 x21: 0000000000000000 x20: ffffff8805b14000 x19: ffffff880100da80 x18: 0000000000010450 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 0000000000000003 x13: 0000000000000000 x12: ffffff880100dad0 x11: 0000000000000000 x10: ffffffc0832dcd08 x9 : ffffffc0812416d8 x8 : 00000000000001f4 x7 : ffffffc0830d2830 x6 : 0000000000000001 x5 : ffffffc082091000 x4 : ffffffc082091658 x3 : 0000000000000000 x2 : ffffffc7f9653000 x1 : 0000000000000000 x0 : ffffff8802d20000 Call trace: crypto_finalize_request+0xa0/0x118 crypto_finalize_aead_request+0x18/0x30 zynqmp_handle_aes_req+0xcc/0x388 crypto_pump_work+0x168/0x2d8 kthread_worker_fn+0xfc/0x3a0 kthread+0x118/0x138 ret_from_fork+0x10/0x20 irq event stamp: 40 hardirqs last enabled at (39): [<ffffffc0812416f8>] _raw_spin_unlock_irqrestore+0x70/0xb0 hardirqs last disabled at (40): [<ffffffc08122d208>] el1_dbg+0x28/0x90 softirqs last enabled at (36): [<ffffffc080017dec>] kernel_neon_begin+0x8c/0xf0 softirqs last disabled at (34): [<ffffffc080017dc0>] kernel_neon_begin+0x60/0xf0 ---[ end trace 0000000000000000 ]---

References

►

URL

Tags

	https://git.kernel.org/stable/c/8a01335aedc50a66d04dd39203c89f4bc8042596
	https://git.kernel.org/stable/c/03e6d4e948432a61b35783323b6ab2be071d2619
	https://git.kernel.org/stable/c/a71f66bd5f7b9b35a8aaa49e29565eca66299399
	https://git.kernel.org/stable/c/23bc89fdce71124cd2126fc919c7076e7cb489cf
	https://git.kernel.org/stable/c/9db89b1fb85557892e6681724b367287de5f9f20
	https://git.kernel.org/stable/c/dbf291d8ffffb70f48286176a15c6c54f0bb0743
	https://git.kernel.org/stable/c/a853450bf4c752e664abab0b2fad395b7ad7701c

Impacted products

Vendor

Product

Version

►

Linux

Version: 4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5
Version: 4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5
Version: 4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5
Version: 4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5
Version: 4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5
Version: 4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5
Version: 4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5

Linux

Version: 5.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.426Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8a01335aedc50a66d04dd39203c89f4bc8042596"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/03e6d4e948432a61b35783323b6ab2be071d2619"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a71f66bd5f7b9b35a8aaa49e29565eca66299399"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/23bc89fdce71124cd2126fc919c7076e7cb489cf"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9db89b1fb85557892e6681724b367287de5f9f20"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dbf291d8ffffb70f48286176a15c6c54f0bb0743"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a853450bf4c752e664abab0b2fad395b7ad7701c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26877",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:48:28.996233Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:26.216Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/crypto/xilinx/zynqmp-aes-gcm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "8a01335aedc50a66d04dd39203c89f4bc8042596",
              "status": "affected",
              "version": "4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5",
              "versionType": "git"
            },
            {
              "lessThan": "03e6d4e948432a61b35783323b6ab2be071d2619",
              "status": "affected",
              "version": "4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5",
              "versionType": "git"
            },
            {
              "lessThan": "a71f66bd5f7b9b35a8aaa49e29565eca66299399",
              "status": "affected",
              "version": "4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5",
              "versionType": "git"
            },
            {
              "lessThan": "23bc89fdce71124cd2126fc919c7076e7cb489cf",
              "status": "affected",
              "version": "4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5",
              "versionType": "git"
            },
            {
              "lessThan": "9db89b1fb85557892e6681724b367287de5f9f20",
              "status": "affected",
              "version": "4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5",
              "versionType": "git"
            },
            {
              "lessThan": "dbf291d8ffffb70f48286176a15c6c54f0bb0743",
              "status": "affected",
              "version": "4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5",
              "versionType": "git"
            },
            {
              "lessThan": "a853450bf4c752e664abab0b2fad395b7ad7701c",
              "status": "affected",
              "version": "4d96f7d48131fefe30d7c1d1e2a23ef37164dbf5",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/crypto/xilinx/zynqmp-aes-gcm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.7"
            },
            {
              "lessThan": "5.7",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: xilinx - call finalize with bh disabled\n\nWhen calling crypto_finalize_request, BH should be disabled to avoid\ntriggering the following calltrace:\n\n    ------------[ cut here ]------------\n    WARNING: CPU: 2 PID: 74 at crypto/crypto_engine.c:58 crypto_finalize_request+0xa0/0x118\n    Modules linked in: cryptodev(O)\n    CPU: 2 PID: 74 Comm: firmware:zynqmp Tainted: G           O       6.8.0-rc1-yocto-standard #323\n    Hardware name: ZynqMP ZCU102 Rev1.0 (DT)\n    pstate: 40000005 (nZcv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n    pc : crypto_finalize_request+0xa0/0x118\n    lr : crypto_finalize_request+0x104/0x118\n    sp : ffffffc085353ce0\n    x29: ffffffc085353ce0 x28: 0000000000000000 x27: ffffff8808ea8688\n    x26: ffffffc081715038 x25: 0000000000000000 x24: ffffff880100db00\n    x23: ffffff880100da80 x22: 0000000000000000 x21: 0000000000000000\n    x20: ffffff8805b14000 x19: ffffff880100da80 x18: 0000000000010450\n    x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n    x14: 0000000000000003 x13: 0000000000000000 x12: ffffff880100dad0\n    x11: 0000000000000000 x10: ffffffc0832dcd08 x9 : ffffffc0812416d8\n    x8 : 00000000000001f4 x7 : ffffffc0830d2830 x6 : 0000000000000001\n    x5 : ffffffc082091000 x4 : ffffffc082091658 x3 : 0000000000000000\n    x2 : ffffffc7f9653000 x1 : 0000000000000000 x0 : ffffff8802d20000\n    Call trace:\n     crypto_finalize_request+0xa0/0x118\n     crypto_finalize_aead_request+0x18/0x30\n     zynqmp_handle_aes_req+0xcc/0x388\n     crypto_pump_work+0x168/0x2d8\n     kthread_worker_fn+0xfc/0x3a0\n     kthread+0x118/0x138\n     ret_from_fork+0x10/0x20\n    irq event stamp: 40\n    hardirqs last  enabled at (39): [\u003cffffffc0812416f8\u003e] _raw_spin_unlock_irqrestore+0x70/0xb0\n    hardirqs last disabled at (40): [\u003cffffffc08122d208\u003e] el1_dbg+0x28/0x90\n    softirqs last  enabled at (36): [\u003cffffffc080017dec\u003e] kernel_neon_begin+0x8c/0xf0\n    softirqs last disabled at (34): [\u003cffffffc080017dc0\u003e] kernel_neon_begin+0x60/0xf0\n    ---[ end trace 0000000000000000 ]---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:39.909Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/8a01335aedc50a66d04dd39203c89f4bc8042596"
        },
        {
          "url": "https://git.kernel.org/stable/c/03e6d4e948432a61b35783323b6ab2be071d2619"
        },
        {
          "url": "https://git.kernel.org/stable/c/a71f66bd5f7b9b35a8aaa49e29565eca66299399"
        },
        {
          "url": "https://git.kernel.org/stable/c/23bc89fdce71124cd2126fc919c7076e7cb489cf"
        },
        {
          "url": "https://git.kernel.org/stable/c/9db89b1fb85557892e6681724b367287de5f9f20"
        },
        {
          "url": "https://git.kernel.org/stable/c/dbf291d8ffffb70f48286176a15c6c54f0bb0743"
        },
        {
          "url": "https://git.kernel.org/stable/c/a853450bf4c752e664abab0b2fad395b7ad7701c"
        }
      ],
      "title": "crypto: xilinx - call finalize with bh disabled",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26877",
    "datePublished": "2024-04-17T10:27:35.197Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:39.909Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26881 (GCVE-0-2024-26881)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash when 1588 is received on HIP08 devices The HIP08 devices does not register the ptp devices, so the hdev->ptp is NULL, but the hardware can receive 1588 messages, and set the HNS3_RXD_TS_VLD_B bit, so, if match this case, the access of hdev->ptp->flags will cause a kernel crash: [ 5888.946472] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018 [ 5888.946475] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018 ... [ 5889.266118] pc : hclge_ptp_get_rx_hwts+0x40/0x170 [hclge] [ 5889.272612] lr : hclge_ptp_get_rx_hwts+0x34/0x170 [hclge] [ 5889.279101] sp : ffff800012c3bc50 [ 5889.283516] x29: ffff800012c3bc50 x28: ffff2040002be040 [ 5889.289927] x27: ffff800009116484 x26: 0000000080007500 [ 5889.296333] x25: 0000000000000000 x24: ffff204001c6f000 [ 5889.302738] x23: ffff204144f53c00 x22: 0000000000000000 [ 5889.309134] x21: 0000000000000000 x20: ffff204004220080 [ 5889.315520] x19: ffff204144f53c00 x18: 0000000000000000 [ 5889.321897] x17: 0000000000000000 x16: 0000000000000000 [ 5889.328263] x15: 0000004000140ec8 x14: 0000000000000000 [ 5889.334617] x13: 0000000000000000 x12: 00000000010011df [ 5889.340965] x11: bbfeff4d22000000 x10: 0000000000000000 [ 5889.347303] x9 : ffff800009402124 x8 : 0200f78811dfbb4d [ 5889.353637] x7 : 2200000000191b01 x6 : ffff208002a7d480 [ 5889.359959] x5 : 0000000000000000 x4 : 0000000000000000 [ 5889.366271] x3 : 0000000000000000 x2 : 0000000000000000 [ 5889.372567] x1 : 0000000000000000 x0 : ffff20400095c080 [ 5889.378857] Call trace: [ 5889.382285] hclge_ptp_get_rx_hwts+0x40/0x170 [hclge] [ 5889.388304] hns3_handle_bdinfo+0x324/0x410 [hns3] [ 5889.394055] hns3_handle_rx_bd+0x60/0x150 [hns3] [ 5889.399624] hns3_clean_rx_ring+0x84/0x170 [hns3] [ 5889.405270] hns3_nic_common_poll+0xa8/0x220 [hns3] [ 5889.411084] napi_poll+0xcc/0x264 [ 5889.415329] net_rx_action+0xd4/0x21c [ 5889.419911] __do_softirq+0x130/0x358 [ 5889.424484] irq_exit+0x134/0x154 [ 5889.428700] __handle_domain_irq+0x88/0xf0 [ 5889.433684] gic_handle_irq+0x78/0x2c0 [ 5889.438319] el1_irq+0xb8/0x140 [ 5889.442354] arch_cpu_idle+0x18/0x40 [ 5889.446816] default_idle_call+0x5c/0x1c0 [ 5889.451714] cpuidle_idle_call+0x174/0x1b0 [ 5889.456692] do_idle+0xc8/0x160 [ 5889.460717] cpu_startup_entry+0x30/0xfc [ 5889.465523] secondary_start_kernel+0x158/0x1ec [ 5889.470936] Code: 97ffab78 f9411c14 91408294 f9457284 (f9400c80) [ 5889.477950] SMP: stopping secondary CPUs [ 5890.514626] SMP: failed to stop secondary CPUs 0-69,71-95 [ 5890.522951] Starting crashdump kernel...

References

►

URL

Tags

	https://git.kernel.org/stable/c/23ec1cec24293f9799c725941677d4e167997265
	https://git.kernel.org/stable/c/b3cf70472a600bcb2efe24906bc9bc6014d4c6f6
	https://git.kernel.org/stable/c/f0b5225a7dfc1bf53c98215db8c2f0b4efd3f108
	https://git.kernel.org/stable/c/b2bb19114c079dcfec1ea46e761f510e30505e70
	https://git.kernel.org/stable/c/11b998360d96f6c76f04a95f54b49f24d3c858e4
	https://git.kernel.org/stable/c/0fbcf2366ba9888cf02eda23e35fde7f7fcc07c3

Impacted products

Vendor

Product

Version

►

Linux

Version: 0bf5eb788512187b744ef7f79de835e6cbe85b9c
Version: 0bf5eb788512187b744ef7f79de835e6cbe85b9c
Version: 0bf5eb788512187b744ef7f79de835e6cbe85b9c
Version: 0bf5eb788512187b744ef7f79de835e6cbe85b9c
Version: 0bf5eb788512187b744ef7f79de835e6cbe85b9c
Version: 0bf5eb788512187b744ef7f79de835e6cbe85b9c

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26881",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T16:27:31.447610Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-12T16:27:38.120Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:04.243Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/23ec1cec24293f9799c725941677d4e167997265"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b3cf70472a600bcb2efe24906bc9bc6014d4c6f6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f0b5225a7dfc1bf53c98215db8c2f0b4efd3f108"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b2bb19114c079dcfec1ea46e761f510e30505e70"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/11b998360d96f6c76f04a95f54b49f24d3c858e4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0fbcf2366ba9888cf02eda23e35fde7f7fcc07c3"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_ptp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "23ec1cec24293f9799c725941677d4e167997265",
              "status": "affected",
              "version": "0bf5eb788512187b744ef7f79de835e6cbe85b9c",
              "versionType": "git"
            },
            {
              "lessThan": "b3cf70472a600bcb2efe24906bc9bc6014d4c6f6",
              "status": "affected",
              "version": "0bf5eb788512187b744ef7f79de835e6cbe85b9c",
              "versionType": "git"
            },
            {
              "lessThan": "f0b5225a7dfc1bf53c98215db8c2f0b4efd3f108",
              "status": "affected",
              "version": "0bf5eb788512187b744ef7f79de835e6cbe85b9c",
              "versionType": "git"
            },
            {
              "lessThan": "b2bb19114c079dcfec1ea46e761f510e30505e70",
              "status": "affected",
              "version": "0bf5eb788512187b744ef7f79de835e6cbe85b9c",
              "versionType": "git"
            },
            {
              "lessThan": "11b998360d96f6c76f04a95f54b49f24d3c858e4",
              "status": "affected",
              "version": "0bf5eb788512187b744ef7f79de835e6cbe85b9c",
              "versionType": "git"
            },
            {
              "lessThan": "0fbcf2366ba9888cf02eda23e35fde7f7fcc07c3",
              "status": "affected",
              "version": "0bf5eb788512187b744ef7f79de835e6cbe85b9c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_ptp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: hns3: fix kernel crash when 1588 is received on HIP08 devices\n\nThe HIP08 devices does not register the ptp devices, so the\nhdev-\u003eptp is NULL, but the hardware can receive 1588 messages,\nand set the HNS3_RXD_TS_VLD_B bit, so, if match this case, the\naccess of hdev-\u003eptp-\u003eflags will cause a kernel crash:\n\n[ 5888.946472] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n[ 5888.946475] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000018\n...\n[ 5889.266118] pc : hclge_ptp_get_rx_hwts+0x40/0x170 [hclge]\n[ 5889.272612] lr : hclge_ptp_get_rx_hwts+0x34/0x170 [hclge]\n[ 5889.279101] sp : ffff800012c3bc50\n[ 5889.283516] x29: ffff800012c3bc50 x28: ffff2040002be040\n[ 5889.289927] x27: ffff800009116484 x26: 0000000080007500\n[ 5889.296333] x25: 0000000000000000 x24: ffff204001c6f000\n[ 5889.302738] x23: ffff204144f53c00 x22: 0000000000000000\n[ 5889.309134] x21: 0000000000000000 x20: ffff204004220080\n[ 5889.315520] x19: ffff204144f53c00 x18: 0000000000000000\n[ 5889.321897] x17: 0000000000000000 x16: 0000000000000000\n[ 5889.328263] x15: 0000004000140ec8 x14: 0000000000000000\n[ 5889.334617] x13: 0000000000000000 x12: 00000000010011df\n[ 5889.340965] x11: bbfeff4d22000000 x10: 0000000000000000\n[ 5889.347303] x9 : ffff800009402124 x8 : 0200f78811dfbb4d\n[ 5889.353637] x7 : 2200000000191b01 x6 : ffff208002a7d480\n[ 5889.359959] x5 : 0000000000000000 x4 : 0000000000000000\n[ 5889.366271] x3 : 0000000000000000 x2 : 0000000000000000\n[ 5889.372567] x1 : 0000000000000000 x0 : ffff20400095c080\n[ 5889.378857] Call trace:\n[ 5889.382285] hclge_ptp_get_rx_hwts+0x40/0x170 [hclge]\n[ 5889.388304] hns3_handle_bdinfo+0x324/0x410 [hns3]\n[ 5889.394055] hns3_handle_rx_bd+0x60/0x150 [hns3]\n[ 5889.399624] hns3_clean_rx_ring+0x84/0x170 [hns3]\n[ 5889.405270] hns3_nic_common_poll+0xa8/0x220 [hns3]\n[ 5889.411084] napi_poll+0xcc/0x264\n[ 5889.415329] net_rx_action+0xd4/0x21c\n[ 5889.419911] __do_softirq+0x130/0x358\n[ 5889.424484] irq_exit+0x134/0x154\n[ 5889.428700] __handle_domain_irq+0x88/0xf0\n[ 5889.433684] gic_handle_irq+0x78/0x2c0\n[ 5889.438319] el1_irq+0xb8/0x140\n[ 5889.442354] arch_cpu_idle+0x18/0x40\n[ 5889.446816] default_idle_call+0x5c/0x1c0\n[ 5889.451714] cpuidle_idle_call+0x174/0x1b0\n[ 5889.456692] do_idle+0xc8/0x160\n[ 5889.460717] cpu_startup_entry+0x30/0xfc\n[ 5889.465523] secondary_start_kernel+0x158/0x1ec\n[ 5889.470936] Code: 97ffab78 f9411c14 91408294 f9457284 (f9400c80)\n[ 5889.477950] SMP: stopping secondary CPUs\n[ 5890.514626] SMP: failed to stop secondary CPUs 0-69,71-95\n[ 5890.522951] Starting crashdump kernel..."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:45.795Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/23ec1cec24293f9799c725941677d4e167997265"
        },
        {
          "url": "https://git.kernel.org/stable/c/b3cf70472a600bcb2efe24906bc9bc6014d4c6f6"
        },
        {
          "url": "https://git.kernel.org/stable/c/f0b5225a7dfc1bf53c98215db8c2f0b4efd3f108"
        },
        {
          "url": "https://git.kernel.org/stable/c/b2bb19114c079dcfec1ea46e761f510e30505e70"
        },
        {
          "url": "https://git.kernel.org/stable/c/11b998360d96f6c76f04a95f54b49f24d3c858e4"
        },
        {
          "url": "https://git.kernel.org/stable/c/0fbcf2366ba9888cf02eda23e35fde7f7fcc07c3"
        }
      ],
      "title": "net: hns3: fix kernel crash when 1588 is received on HIP08 devices",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26881",
    "datePublished": "2024-04-17T10:27:37.744Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:45.795Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48657 (GCVE-0-2022-48657)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: arm64: topology: fix possible overflow in amu_fie_setup() cpufreq_get_hw_max_freq() returns max frequency in kHz as *unsigned int*, while freq_inv_set_max_ratio() gets passed this frequency in Hz as 'u64'. Multiplying max frequency by 1000 can potentially result in overflow -- multiplying by 1000ULL instead should avoid that... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.

References

►

URL

Tags

	https://git.kernel.org/stable/c/904f881b57360cf85de962d84d8614d94431f60e
	https://git.kernel.org/stable/c/3c3edb82d67b2be9231174ac2af4af60d4af7549
	https://git.kernel.org/stable/c/bb6d99e27cbe6b30e4e3bbd32927fd3b0bdec6eb
	https://git.kernel.org/stable/c/d4955c0ad77dbc684fc716387070ac24801b8bca

Impacted products

Vendor

Product

Version

►

Linux

Version: cd0ed03a8903a0b0c6fc36e32d133d1ddfe70cd6
Version: cd0ed03a8903a0b0c6fc36e32d133d1ddfe70cd6
Version: cd0ed03a8903a0b0c6fc36e32d133d1ddfe70cd6
Version: cd0ed03a8903a0b0c6fc36e32d133d1ddfe70cd6

Linux

Version: 5.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48657",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:40:00.243265Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:41.197Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.599Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/904f881b57360cf85de962d84d8614d94431f60e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3c3edb82d67b2be9231174ac2af4af60d4af7549"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bb6d99e27cbe6b30e4e3bbd32927fd3b0bdec6eb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d4955c0ad77dbc684fc716387070ac24801b8bca"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "arch/arm64/kernel/topology.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "904f881b57360cf85de962d84d8614d94431f60e",
              "status": "affected",
              "version": "cd0ed03a8903a0b0c6fc36e32d133d1ddfe70cd6",
              "versionType": "git"
            },
            {
              "lessThan": "3c3edb82d67b2be9231174ac2af4af60d4af7549",
              "status": "affected",
              "version": "cd0ed03a8903a0b0c6fc36e32d133d1ddfe70cd6",
              "versionType": "git"
            },
            {
              "lessThan": "bb6d99e27cbe6b30e4e3bbd32927fd3b0bdec6eb",
              "status": "affected",
              "version": "cd0ed03a8903a0b0c6fc36e32d133d1ddfe70cd6",
              "versionType": "git"
            },
            {
              "lessThan": "d4955c0ad77dbc684fc716387070ac24801b8bca",
              "status": "affected",
              "version": "cd0ed03a8903a0b0c6fc36e32d133d1ddfe70cd6",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "arch/arm64/kernel/topology.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.7"
            },
            {
              "lessThan": "5.7",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.150",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: topology: fix possible overflow in amu_fie_setup()\n\ncpufreq_get_hw_max_freq() returns max frequency in kHz as *unsigned int*,\nwhile freq_inv_set_max_ratio() gets passed this frequency in Hz as \u0027u64\u0027.\nMultiplying max frequency by 1000 can potentially result in overflow --\nmultiplying by 1000ULL instead should avoid that...\n\nFound by Linux Verification Center (linuxtesting.org) with the SVACE static\nanalysis tool."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:42.421Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/904f881b57360cf85de962d84d8614d94431f60e"
        },
        {
          "url": "https://git.kernel.org/stable/c/3c3edb82d67b2be9231174ac2af4af60d4af7549"
        },
        {
          "url": "https://git.kernel.org/stable/c/bb6d99e27cbe6b30e4e3bbd32927fd3b0bdec6eb"
        },
        {
          "url": "https://git.kernel.org/stable/c/d4955c0ad77dbc684fc716387070ac24801b8bca"
        }
      ],
      "title": "arm64: topology: fix possible overflow in amu_fie_setup()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48657",
    "datePublished": "2024-04-28T13:01:08.975Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:42.421Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26950 (GCVE-0-2024-26950)

Vulnerability from cvelistv5

Published

2024-05-01 05:18

Modified

2025-05-04 09:00

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: wireguard: netlink: access device through ctx instead of peer The previous commit fixed a bug that led to a NULL peer->device being dereferenced. It's actually easier and faster performance-wise to instead get the device from ctx->wg. This semantically makes more sense too, since ctx->wg->peer_allowedips.seq is compared with ctx->allowedips_seq, basing them both in ctx. This also acts as a defence in depth provision against freed peers.

References

►

URL

Tags

	https://git.kernel.org/stable/c/493aa6bdcffd90a4f82aa614fe4f4db0641b4068
	https://git.kernel.org/stable/c/4be453271a882c8ebc28df3dbf9e4d95e6ac42f5
	https://git.kernel.org/stable/c/09c3fa70f65175861ca948cb2f0f791e666c90e5
	https://git.kernel.org/stable/c/c991567e6c638079304cc15dff28748e4a3c4a37
	https://git.kernel.org/stable/c/93bcc1752c69bb309f4d8cfaf960ef1faeb34996
	https://git.kernel.org/stable/c/d44bd323d8bb8031eef4bdc44547925998a11e47
	https://git.kernel.org/stable/c/71cbd32e3db82ea4a74e3ef9aeeaa6971969c86f

Impacted products

Vendor

Product

Version

►

Linux

Version: e7096c131e5161fa3b8e52a650d7719d2857adfd
Version: e7096c131e5161fa3b8e52a650d7719d2857adfd
Version: e7096c131e5161fa3b8e52a650d7719d2857adfd
Version: e7096c131e5161fa3b8e52a650d7719d2857adfd
Version: e7096c131e5161fa3b8e52a650d7719d2857adfd
Version: e7096c131e5161fa3b8e52a650d7719d2857adfd
Version: e7096c131e5161fa3b8e52a650d7719d2857adfd

Linux

Version: 5.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26950",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-06T18:55:56.220490Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-07T15:00:58.528Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.839Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/493aa6bdcffd90a4f82aa614fe4f4db0641b4068"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4be453271a882c8ebc28df3dbf9e4d95e6ac42f5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/09c3fa70f65175861ca948cb2f0f791e666c90e5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c991567e6c638079304cc15dff28748e4a3c4a37"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/93bcc1752c69bb309f4d8cfaf960ef1faeb34996"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d44bd323d8bb8031eef4bdc44547925998a11e47"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/71cbd32e3db82ea4a74e3ef9aeeaa6971969c86f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireguard/netlink.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "493aa6bdcffd90a4f82aa614fe4f4db0641b4068",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "4be453271a882c8ebc28df3dbf9e4d95e6ac42f5",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "09c3fa70f65175861ca948cb2f0f791e666c90e5",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "c991567e6c638079304cc15dff28748e4a3c4a37",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "93bcc1752c69bb309f4d8cfaf960ef1faeb34996",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "d44bd323d8bb8031eef4bdc44547925998a11e47",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "71cbd32e3db82ea4a74e3ef9aeeaa6971969c86f",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireguard/netlink.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.6"
            },
            {
              "lessThan": "5.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: netlink: access device through ctx instead of peer\n\nThe previous commit fixed a bug that led to a NULL peer-\u003edevice being\ndereferenced. It\u0027s actually easier and faster performance-wise to\ninstead get the device from ctx-\u003ewg. This semantically makes more sense\ntoo, since ctx-\u003ewg-\u003epeer_allowedips.seq is compared with\nctx-\u003eallowedips_seq, basing them both in ctx. This also acts as a\ndefence in depth provision against freed peers."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:00:31.028Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/493aa6bdcffd90a4f82aa614fe4f4db0641b4068"
        },
        {
          "url": "https://git.kernel.org/stable/c/4be453271a882c8ebc28df3dbf9e4d95e6ac42f5"
        },
        {
          "url": "https://git.kernel.org/stable/c/09c3fa70f65175861ca948cb2f0f791e666c90e5"
        },
        {
          "url": "https://git.kernel.org/stable/c/c991567e6c638079304cc15dff28748e4a3c4a37"
        },
        {
          "url": "https://git.kernel.org/stable/c/93bcc1752c69bb309f4d8cfaf960ef1faeb34996"
        },
        {
          "url": "https://git.kernel.org/stable/c/d44bd323d8bb8031eef4bdc44547925998a11e47"
        },
        {
          "url": "https://git.kernel.org/stable/c/71cbd32e3db82ea4a74e3ef9aeeaa6971969c86f"
        }
      ],
      "title": "wireguard: netlink: access device through ctx instead of peer",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26950",
    "datePublished": "2024-05-01T05:18:29.902Z",
    "dateReserved": "2024-02-19T14:20:24.198Z",
    "dateUpdated": "2025-05-04T09:00:31.028Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26875 (GCVE-0-2024-26875)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

6.4 (Medium) - CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix uaf in pvr2_context_set_notify [Syzbot reported] BUG: KASAN: slab-use-after-free in pvr2_context_set_notify+0x2c4/0x310 drivers/media/usb/pvrusb2/pvrusb2-context.c:35 Read of size 4 at addr ffff888113aeb0d8 by task kworker/1:1/26 CPU: 1 PID: 26 Comm: kworker/1:1 Not tainted 6.8.0-rc1-syzkaller-00046-gf1a27f081c1f #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 Workqueue: usb_hub_wq hub_event Call Trace: <TASK> __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0xd9/0x1b0 lib/dump_stack.c:106 print_address_description mm/kasan/report.c:377 [inline] print_report+0xc4/0x620 mm/kasan/report.c:488 kasan_report+0xda/0x110 mm/kasan/report.c:601 pvr2_context_set_notify+0x2c4/0x310 drivers/media/usb/pvrusb2/pvrusb2-context.c:35 pvr2_context_notify drivers/media/usb/pvrusb2/pvrusb2-context.c:95 [inline] pvr2_context_disconnect+0x94/0xb0 drivers/media/usb/pvrusb2/pvrusb2-context.c:272 Freed by task 906: kasan_save_stack+0x33/0x50 mm/kasan/common.c:47 kasan_save_track+0x14/0x30 mm/kasan/common.c:68 kasan_save_free_info+0x3f/0x60 mm/kasan/generic.c:640 poison_slab_object mm/kasan/common.c:241 [inline] __kasan_slab_free+0x106/0x1b0 mm/kasan/common.c:257 kasan_slab_free include/linux/kasan.h:184 [inline] slab_free_hook mm/slub.c:2121 [inline] slab_free mm/slub.c:4299 [inline] kfree+0x105/0x340 mm/slub.c:4409 pvr2_context_check drivers/media/usb/pvrusb2/pvrusb2-context.c:137 [inline] pvr2_context_thread_func+0x69d/0x960 drivers/media/usb/pvrusb2/pvrusb2-context.c:158 [Analyze] Task A set disconnect_flag = !0, which resulted in Task B's condition being met and releasing mp, leading to this issue. [Fix] Place the disconnect_flag assignment operation after all code in pvr2_context_disconnect() to avoid this issue.

References

►

URL

Tags

	https://git.kernel.org/stable/c/ed8000e1e8e9684ab6c30cf2b526c0cea039929c
	https://git.kernel.org/stable/c/d29ed08964cec8b9729bc55c7bb23f679d7a18fb
	https://git.kernel.org/stable/c/ab896d93fd6a2cd1afeb034c3cc9226cb499209f
	https://git.kernel.org/stable/c/eb6e9dce979c08210ff7249e5e0eceb8991bfcd7
	https://git.kernel.org/stable/c/3a1ec89708d2e57e2712f46241282961b1a7a475
	https://git.kernel.org/stable/c/8e60b99f6b7ccb3badeb512f5eb613ad45904592
	https://git.kernel.org/stable/c/40cd818fae875c424a8335009db33c7b5a07de3a
	https://git.kernel.org/stable/c/eaa410e05bdf562c90b23cdf2d9327f9c4625e16
	https://git.kernel.org/stable/c/0a0b79ea55de8514e1750884e5fec77f9fdd01ee

Impacted products

Vendor

Product

Version

►

Linux

Version: e5be15c63804e05b5a94197524023702a259e308
Version: e5be15c63804e05b5a94197524023702a259e308
Version: e5be15c63804e05b5a94197524023702a259e308
Version: e5be15c63804e05b5a94197524023702a259e308
Version: e5be15c63804e05b5a94197524023702a259e308
Version: e5be15c63804e05b5a94197524023702a259e308
Version: e5be15c63804e05b5a94197524023702a259e308
Version: e5be15c63804e05b5a94197524023702a259e308
Version: e5be15c63804e05b5a94197524023702a259e308

Linux

Version: 2.6.26

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.434Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ed8000e1e8e9684ab6c30cf2b526c0cea039929c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d29ed08964cec8b9729bc55c7bb23f679d7a18fb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ab896d93fd6a2cd1afeb034c3cc9226cb499209f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/eb6e9dce979c08210ff7249e5e0eceb8991bfcd7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3a1ec89708d2e57e2712f46241282961b1a7a475"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8e60b99f6b7ccb3badeb512f5eb613ad45904592"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/40cd818fae875c424a8335009db33c7b5a07de3a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/eaa410e05bdf562c90b23cdf2d9327f9c4625e16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0a0b79ea55de8514e1750884e5fec77f9fdd01ee"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "ed8000e1e8e9",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "lessThan": "d29ed08964ce",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "lessThan": "ab896d93fd6a",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "lessThan": "eb6e9dce979c",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "lessThan": "3a1ec89708d2",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "8e60b99f6b7c",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "lessThan": "40cd818fae87",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "lessThan": "eaa410e05bdf",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "lessThan": "0a0b79ea55de",
                "status": "affected",
                "version": "e5be15c63804",
                "versionType": "custom"
              },
              {
                "status": "affected",
                "version": "2.6.26"
              },
              {
                "lessThan": "2.6.26",
                "status": "unaffected",
                "version": "0",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "4.20",
                "status": "unaffected",
                "version": "4.19.311",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "5.5",
                "status": "unaffected",
                "version": "5.4.273",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "5.11",
                "status": "unaffected",
                "version": "5.10.214",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "5.16",
                "status": "unaffected",
                "version": "5.15.153",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "6.2",
                "status": "unaffected",
                "version": "6.183",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "6.7",
                "status": "unaffected",
                "version": "6.6.23",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "6.8",
                "status": "unaffected",
                "version": "6.7.11",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "6.9",
                "status": "unaffected",
                "version": "6.8.2",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "*",
                "status": "unaffected",
                "version": "6.9",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 6.4,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "HIGH",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26875",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-08T18:16:38.134267Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-02-11T21:47:07.560Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/media/usb/pvrusb2/pvrusb2-context.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ed8000e1e8e9684ab6c30cf2b526c0cea039929c",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            },
            {
              "lessThan": "d29ed08964cec8b9729bc55c7bb23f679d7a18fb",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            },
            {
              "lessThan": "ab896d93fd6a2cd1afeb034c3cc9226cb499209f",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            },
            {
              "lessThan": "eb6e9dce979c08210ff7249e5e0eceb8991bfcd7",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            },
            {
              "lessThan": "3a1ec89708d2e57e2712f46241282961b1a7a475",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            },
            {
              "lessThan": "8e60b99f6b7ccb3badeb512f5eb613ad45904592",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            },
            {
              "lessThan": "40cd818fae875c424a8335009db33c7b5a07de3a",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            },
            {
              "lessThan": "eaa410e05bdf562c90b23cdf2d9327f9c4625e16",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            },
            {
              "lessThan": "0a0b79ea55de8514e1750884e5fec77f9fdd01ee",
              "status": "affected",
              "version": "e5be15c63804e05b5a94197524023702a259e308",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/media/usb/pvrusb2/pvrusb2-context.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.26"
            },
            {
              "lessThan": "2.6.26",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.26",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: pvrusb2: fix uaf in pvr2_context_set_notify\n\n[Syzbot reported]\nBUG: KASAN: slab-use-after-free in pvr2_context_set_notify+0x2c4/0x310 drivers/media/usb/pvrusb2/pvrusb2-context.c:35\nRead of size 4 at addr ffff888113aeb0d8 by task kworker/1:1/26\n\nCPU: 1 PID: 26 Comm: kworker/1:1 Not tainted 6.8.0-rc1-syzkaller-00046-gf1a27f081c1f #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nWorkqueue: usb_hub_wq hub_event\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xd9/0x1b0 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:377 [inline]\n print_report+0xc4/0x620 mm/kasan/report.c:488\n kasan_report+0xda/0x110 mm/kasan/report.c:601\n pvr2_context_set_notify+0x2c4/0x310 drivers/media/usb/pvrusb2/pvrusb2-context.c:35\n pvr2_context_notify drivers/media/usb/pvrusb2/pvrusb2-context.c:95 [inline]\n pvr2_context_disconnect+0x94/0xb0 drivers/media/usb/pvrusb2/pvrusb2-context.c:272\n\nFreed by task 906:\nkasan_save_stack+0x33/0x50 mm/kasan/common.c:47\nkasan_save_track+0x14/0x30 mm/kasan/common.c:68\nkasan_save_free_info+0x3f/0x60 mm/kasan/generic.c:640\npoison_slab_object mm/kasan/common.c:241 [inline]\n__kasan_slab_free+0x106/0x1b0 mm/kasan/common.c:257\nkasan_slab_free include/linux/kasan.h:184 [inline]\nslab_free_hook mm/slub.c:2121 [inline]\nslab_free mm/slub.c:4299 [inline]\nkfree+0x105/0x340 mm/slub.c:4409\npvr2_context_check drivers/media/usb/pvrusb2/pvrusb2-context.c:137 [inline]\npvr2_context_thread_func+0x69d/0x960 drivers/media/usb/pvrusb2/pvrusb2-context.c:158\n\n[Analyze]\nTask A set disconnect_flag = !0, which resulted in Task B\u0027s condition being met\nand releasing mp, leading to this issue.\n\n[Fix]\nPlace the disconnect_flag assignment operation after all code in pvr2_context_disconnect()\nto avoid this issue."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:37.032Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ed8000e1e8e9684ab6c30cf2b526c0cea039929c"
        },
        {
          "url": "https://git.kernel.org/stable/c/d29ed08964cec8b9729bc55c7bb23f679d7a18fb"
        },
        {
          "url": "https://git.kernel.org/stable/c/ab896d93fd6a2cd1afeb034c3cc9226cb499209f"
        },
        {
          "url": "https://git.kernel.org/stable/c/eb6e9dce979c08210ff7249e5e0eceb8991bfcd7"
        },
        {
          "url": "https://git.kernel.org/stable/c/3a1ec89708d2e57e2712f46241282961b1a7a475"
        },
        {
          "url": "https://git.kernel.org/stable/c/8e60b99f6b7ccb3badeb512f5eb613ad45904592"
        },
        {
          "url": "https://git.kernel.org/stable/c/40cd818fae875c424a8335009db33c7b5a07de3a"
        },
        {
          "url": "https://git.kernel.org/stable/c/eaa410e05bdf562c90b23cdf2d9327f9c4625e16"
        },
        {
          "url": "https://git.kernel.org/stable/c/0a0b79ea55de8514e1750884e5fec77f9fdd01ee"
        }
      ],
      "title": "media: pvrusb2: fix uaf in pvr2_context_set_notify",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26875",
    "datePublished": "2024-04-17T10:27:33.914Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:37.032Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26866 (GCVE-0-2024-26866)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: spi: lpspi: Avoid potential use-after-free in probe() fsl_lpspi_probe() is allocating/disposing memory manually with spi_alloc_host()/spi_alloc_target(), but uses devm_spi_register_controller(). In case of error after the latter call the memory will be explicitly freed in the probe function by spi_controller_put() call, but used afterwards by "devm" management outside probe() (spi_unregister_controller() <- devm_spi_unregister() below). Unable to handle kernel NULL pointer dereference at virtual address 0000000000000070 ... Call trace: kernfs_find_ns kernfs_find_and_get_ns sysfs_remove_group sysfs_remove_groups device_remove_attrs device_del spi_unregister_controller devm_spi_unregister release_nodes devres_release_all really_probe driver_probe_device __device_attach_driver bus_for_each_drv __device_attach device_initial_probe bus_probe_device deferred_probe_work_func process_one_work worker_thread kthread ret_from_fork

References

►

URL

Tags

	https://git.kernel.org/stable/c/da83ed350e4604b976e94239b08d8e2e7eaee7ea
	https://git.kernel.org/stable/c/1543418e82789cc383cd36d41469983c64e3fc7f
	https://git.kernel.org/stable/c/996ce839606afd0fef91355627868022aa73eb68
	https://git.kernel.org/stable/c/2ae0ab0143fcc06190713ed81a6486ed0ad3c861

Impacted products

Vendor

Product

Version

►

Linux

Version: 5314987de5e5f5e38436ef4a69328bc472bbd63e
Version: 5314987de5e5f5e38436ef4a69328bc472bbd63e
Version: 5314987de5e5f5e38436ef4a69328bc472bbd63e
Version: 5314987de5e5f5e38436ef4a69328bc472bbd63e

Linux

Version: 4.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26866",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T19:57:41.631957Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:35.428Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:04.255Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/da83ed350e4604b976e94239b08d8e2e7eaee7ea"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1543418e82789cc383cd36d41469983c64e3fc7f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/996ce839606afd0fef91355627868022aa73eb68"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2ae0ab0143fcc06190713ed81a6486ed0ad3c861"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/spi/spi-fsl-lpspi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "da83ed350e4604b976e94239b08d8e2e7eaee7ea",
              "status": "affected",
              "version": "5314987de5e5f5e38436ef4a69328bc472bbd63e",
              "versionType": "git"
            },
            {
              "lessThan": "1543418e82789cc383cd36d41469983c64e3fc7f",
              "status": "affected",
              "version": "5314987de5e5f5e38436ef4a69328bc472bbd63e",
              "versionType": "git"
            },
            {
              "lessThan": "996ce839606afd0fef91355627868022aa73eb68",
              "status": "affected",
              "version": "5314987de5e5f5e38436ef4a69328bc472bbd63e",
              "versionType": "git"
            },
            {
              "lessThan": "2ae0ab0143fcc06190713ed81a6486ed0ad3c861",
              "status": "affected",
              "version": "5314987de5e5f5e38436ef4a69328bc472bbd63e",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/spi/spi-fsl-lpspi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.10"
            },
            {
              "lessThan": "4.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: lpspi: Avoid potential use-after-free in probe()\n\nfsl_lpspi_probe() is allocating/disposing memory manually with\nspi_alloc_host()/spi_alloc_target(), but uses\ndevm_spi_register_controller(). In case of error after the latter call the\nmemory will be explicitly freed in the probe function by\nspi_controller_put() call, but used afterwards by \"devm\" management outside\nprobe() (spi_unregister_controller() \u003c- devm_spi_unregister() below).\n\nUnable to handle kernel NULL pointer dereference at virtual address 0000000000000070\n...\nCall trace:\n kernfs_find_ns\n kernfs_find_and_get_ns\n sysfs_remove_group\n sysfs_remove_groups\n device_remove_attrs\n device_del\n spi_unregister_controller\n devm_spi_unregister\n release_nodes\n devres_release_all\n really_probe\n driver_probe_device\n __device_attach_driver\n bus_for_each_drv\n __device_attach\n device_initial_probe\n bus_probe_device\n deferred_probe_work_func\n process_one_work\n worker_thread\n kthread\n ret_from_fork"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:24.427Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/da83ed350e4604b976e94239b08d8e2e7eaee7ea"
        },
        {
          "url": "https://git.kernel.org/stable/c/1543418e82789cc383cd36d41469983c64e3fc7f"
        },
        {
          "url": "https://git.kernel.org/stable/c/996ce839606afd0fef91355627868022aa73eb68"
        },
        {
          "url": "https://git.kernel.org/stable/c/2ae0ab0143fcc06190713ed81a6486ed0ad3c861"
        }
      ],
      "title": "spi: lpspi: Avoid potential use-after-free in probe()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26866",
    "datePublished": "2024-04-17T10:27:28.163Z",
    "dateReserved": "2024-02-19T14:20:24.184Z",
    "dateUpdated": "2025-05-04T08:58:24.427Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48656 (GCVE-0-2022-48656)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma-private: Fix refcount leak bug in of_xudma_dev_get() We should call of_node_put() for the reference returned by of_parse_phandle() in fail path or when it is not used anymore. Here we only need to move the of_node_put() before the check.

References

►

URL

Tags

	https://git.kernel.org/stable/c/aa11dae059a439af82bae541b134f8f53ac177b5
	https://git.kernel.org/stable/c/dd5a6c5a08752b613e83ad2cb5133e72a64b876d
	https://git.kernel.org/stable/c/a17df55bf6d536712da6902a83db82b82e67d5a2
	https://git.kernel.org/stable/c/f9fdb0b86f087c2b7f6c6168dd0985a3c1eda87e

Impacted products

Vendor

Product

Version

►

Linux

Version: d702419134133db1eab2067dc6ea5723467fd917
Version: d702419134133db1eab2067dc6ea5723467fd917
Version: d702419134133db1eab2067dc6ea5723467fd917
Version: d702419134133db1eab2067dc6ea5723467fd917

Linux

Version: 5.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48656",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-06T19:02:32.298567Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-06T19:02:43.903Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.678Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/aa11dae059a439af82bae541b134f8f53ac177b5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dd5a6c5a08752b613e83ad2cb5133e72a64b876d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a17df55bf6d536712da6902a83db82b82e67d5a2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f9fdb0b86f087c2b7f6c6168dd0985a3c1eda87e"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/dma/ti/k3-udma-private.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "aa11dae059a439af82bae541b134f8f53ac177b5",
              "status": "affected",
              "version": "d702419134133db1eab2067dc6ea5723467fd917",
              "versionType": "git"
            },
            {
              "lessThan": "dd5a6c5a08752b613e83ad2cb5133e72a64b876d",
              "status": "affected",
              "version": "d702419134133db1eab2067dc6ea5723467fd917",
              "versionType": "git"
            },
            {
              "lessThan": "a17df55bf6d536712da6902a83db82b82e67d5a2",
              "status": "affected",
              "version": "d702419134133db1eab2067dc6ea5723467fd917",
              "versionType": "git"
            },
            {
              "lessThan": "f9fdb0b86f087c2b7f6c6168dd0985a3c1eda87e",
              "status": "affected",
              "version": "d702419134133db1eab2067dc6ea5723467fd917",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/dma/ti/k3-udma-private.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.6"
            },
            {
              "lessThan": "5.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndmaengine: ti: k3-udma-private: Fix refcount leak bug in of_xudma_dev_get()\n\nWe should call of_node_put() for the reference returned by\nof_parse_phandle() in fail path or when it is not used anymore.\nHere we only need to move the of_node_put() before the check."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:41.371Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/aa11dae059a439af82bae541b134f8f53ac177b5"
        },
        {
          "url": "https://git.kernel.org/stable/c/dd5a6c5a08752b613e83ad2cb5133e72a64b876d"
        },
        {
          "url": "https://git.kernel.org/stable/c/a17df55bf6d536712da6902a83db82b82e67d5a2"
        },
        {
          "url": "https://git.kernel.org/stable/c/f9fdb0b86f087c2b7f6c6168dd0985a3c1eda87e"
        }
      ],
      "title": "dmaengine: ti: k3-udma-private: Fix refcount leak bug in of_xudma_dev_get()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48656",
    "datePublished": "2024-04-28T13:01:04.974Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:41.371Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52616 (GCVE-0-2023-52616)

Vulnerability from cvelistv5

Published

2024-03-18 10:14

Modified

2025-05-04 07:39

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init When the mpi_ec_ctx structure is initialized, some fields are not cleared, causing a crash when referencing the field when the structure was released. Initially, this issue was ignored because memory for mpi_ec_ctx is allocated with the __GFP_ZERO flag. For example, this error will be triggered when calculating the Za value for SM2 separately.

References

►

URL

Tags

	https://git.kernel.org/stable/c/0c3687822259a7628c85cd21a3445cbe3c367165
	https://git.kernel.org/stable/c/2bb86817b33c9d704e127f92b838035a72c315b6
	https://git.kernel.org/stable/c/bb44477d4506e52785693a39f03cdc6a2c5e8598
	https://git.kernel.org/stable/c/7ebf812b7019fd2d4d5a7ca45ef4bf3a6f4bda0a
	https://git.kernel.org/stable/c/7abdfd45a650c714d5ebab564bb1b988f14d9b49
	https://git.kernel.org/stable/c/ba3c5574203034781ac4231acf117da917efcd2a

Impacted products

Vendor

Product

Version

►

Linux

Version: d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f
Version: d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f
Version: d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f
Version: d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f
Version: d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f
Version: d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f

Linux

Version: 5.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.368Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0c3687822259a7628c85cd21a3445cbe3c367165"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2bb86817b33c9d704e127f92b838035a72c315b6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bb44477d4506e52785693a39f03cdc6a2c5e8598"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7ebf812b7019fd2d4d5a7ca45ef4bf3a6f4bda0a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7abdfd45a650c714d5ebab564bb1b988f14d9b49"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ba3c5574203034781ac4231acf117da917efcd2a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52616",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:55:16.184973Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:19.775Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "lib/crypto/mpi/ec.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "0c3687822259a7628c85cd21a3445cbe3c367165",
              "status": "affected",
              "version": "d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f",
              "versionType": "git"
            },
            {
              "lessThan": "2bb86817b33c9d704e127f92b838035a72c315b6",
              "status": "affected",
              "version": "d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f",
              "versionType": "git"
            },
            {
              "lessThan": "bb44477d4506e52785693a39f03cdc6a2c5e8598",
              "status": "affected",
              "version": "d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f",
              "versionType": "git"
            },
            {
              "lessThan": "7ebf812b7019fd2d4d5a7ca45ef4bf3a6f4bda0a",
              "status": "affected",
              "version": "d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f",
              "versionType": "git"
            },
            {
              "lessThan": "7abdfd45a650c714d5ebab564bb1b988f14d9b49",
              "status": "affected",
              "version": "d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f",
              "versionType": "git"
            },
            {
              "lessThan": "ba3c5574203034781ac4231acf117da917efcd2a",
              "status": "affected",
              "version": "d58bb7e55a8a65894cc02f27c3e2bf9403e7c40f",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "lib/crypto/mpi/ec.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.79",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.15",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.79",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.15",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.3",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init\n\nWhen the mpi_ec_ctx structure is initialized, some fields are not\ncleared, causing a crash when referencing the field when the\nstructure was released. Initially, this issue was ignored because\nmemory for mpi_ec_ctx is allocated with the __GFP_ZERO flag.\nFor example, this error will be triggered when calculating the\nZa value for SM2 separately."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:39:57.258Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/0c3687822259a7628c85cd21a3445cbe3c367165"
        },
        {
          "url": "https://git.kernel.org/stable/c/2bb86817b33c9d704e127f92b838035a72c315b6"
        },
        {
          "url": "https://git.kernel.org/stable/c/bb44477d4506e52785693a39f03cdc6a2c5e8598"
        },
        {
          "url": "https://git.kernel.org/stable/c/7ebf812b7019fd2d4d5a7ca45ef4bf3a6f4bda0a"
        },
        {
          "url": "https://git.kernel.org/stable/c/7abdfd45a650c714d5ebab564bb1b988f14d9b49"
        },
        {
          "url": "https://git.kernel.org/stable/c/ba3c5574203034781ac4231acf117da917efcd2a"
        }
      ],
      "title": "crypto: lib/mpi - Fix unexpected pointer access in mpi_ec_init",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52616",
    "datePublished": "2024-03-18T10:14:46.066Z",
    "dateReserved": "2024-03-06T09:52:12.089Z",
    "dateUpdated": "2025-05-04T07:39:57.258Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26862 (GCVE-0-2024-26862)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: packet: annotate data-races around ignore_outgoing ignore_outgoing is read locklessly from dev_queue_xmit_nit() and packet_getsockopt() Add appropriate READ_ONCE()/WRITE_ONCE() annotations. syzbot reported: BUG: KCSAN: data-race in dev_queue_xmit_nit / packet_setsockopt write to 0xffff888107804542 of 1 bytes by task 22618 on cpu 0: packet_setsockopt+0xd83/0xfd0 net/packet/af_packet.c:4003 do_sock_setsockopt net/socket.c:2311 [inline] __sys_setsockopt+0x1d8/0x250 net/socket.c:2334 __do_sys_setsockopt net/socket.c:2343 [inline] __se_sys_setsockopt net/socket.c:2340 [inline] __x64_sys_setsockopt+0x66/0x80 net/socket.c:2340 do_syscall_64+0xd3/0x1d0 entry_SYSCALL_64_after_hwframe+0x6d/0x75 read to 0xffff888107804542 of 1 bytes by task 27 on cpu 1: dev_queue_xmit_nit+0x82/0x620 net/core/dev.c:2248 xmit_one net/core/dev.c:3527 [inline] dev_hard_start_xmit+0xcc/0x3f0 net/core/dev.c:3547 __dev_queue_xmit+0xf24/0x1dd0 net/core/dev.c:4335 dev_queue_xmit include/linux/netdevice.h:3091 [inline] batadv_send_skb_packet+0x264/0x300 net/batman-adv/send.c:108 batadv_send_broadcast_skb+0x24/0x30 net/batman-adv/send.c:127 batadv_iv_ogm_send_to_if net/batman-adv/bat_iv_ogm.c:392 [inline] batadv_iv_ogm_emit net/batman-adv/bat_iv_ogm.c:420 [inline] batadv_iv_send_outstanding_bat_ogm_packet+0x3f0/0x4b0 net/batman-adv/bat_iv_ogm.c:1700 process_one_work kernel/workqueue.c:3254 [inline] process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335 worker_thread+0x526/0x730 kernel/workqueue.c:3416 kthread+0x1d1/0x210 kernel/kthread.c:388 ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243 value changed: 0x00 -> 0x01 Reported by Kernel Concurrency Sanitizer on: CPU: 1 PID: 27 Comm: kworker/u8:1 Tainted: G W 6.8.0-syzkaller-08073-g480e035fc4c7 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet

References

►

URL

Tags

	https://git.kernel.org/stable/c/84c510411e321caff3c07e6cd0f917f06633cfc0
	https://git.kernel.org/stable/c/68e84120319d4fc298fcdb14cf0bea6a0f64ffbd
	https://git.kernel.org/stable/c/d35b62c224e70797f8a1c37fe9bc4b3e294b7560
	https://git.kernel.org/stable/c/ef7eed7e11d23337310ecc2c014ecaeea52719c5
	https://git.kernel.org/stable/c/2c02c5059c78a52d170bdee4a369b470de6deb37
	https://git.kernel.org/stable/c/ee413f30ec4fe94a0bdf32c8f042cb06fa913234
	https://git.kernel.org/stable/c/8b1e273c6afcf00d3c40a54ada7d6aac1b503b97
	https://git.kernel.org/stable/c/6ebfad33161afacb3e1e59ed1c2feefef70f9f97

Impacted products

Vendor

Product

Version

►

Linux

Version: fa788d986a3aac5069378ed04697bd06f83d3488
Version: fa788d986a3aac5069378ed04697bd06f83d3488
Version: fa788d986a3aac5069378ed04697bd06f83d3488
Version: fa788d986a3aac5069378ed04697bd06f83d3488
Version: fa788d986a3aac5069378ed04697bd06f83d3488
Version: fa788d986a3aac5069378ed04697bd06f83d3488
Version: fa788d986a3aac5069378ed04697bd06f83d3488
Version: fa788d986a3aac5069378ed04697bd06f83d3488

Linux

Version: 4.20

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26862",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:41:30.819714Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:48:16.027Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:04.133Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/84c510411e321caff3c07e6cd0f917f06633cfc0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/68e84120319d4fc298fcdb14cf0bea6a0f64ffbd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d35b62c224e70797f8a1c37fe9bc4b3e294b7560"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ef7eed7e11d23337310ecc2c014ecaeea52719c5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2c02c5059c78a52d170bdee4a369b470de6deb37"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ee413f30ec4fe94a0bdf32c8f042cb06fa913234"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8b1e273c6afcf00d3c40a54ada7d6aac1b503b97"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6ebfad33161afacb3e1e59ed1c2feefef70f9f97"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/core/dev.c",
            "net/packet/af_packet.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "84c510411e321caff3c07e6cd0f917f06633cfc0",
              "status": "affected",
              "version": "fa788d986a3aac5069378ed04697bd06f83d3488",
              "versionType": "git"
            },
            {
              "lessThan": "68e84120319d4fc298fcdb14cf0bea6a0f64ffbd",
              "status": "affected",
              "version": "fa788d986a3aac5069378ed04697bd06f83d3488",
              "versionType": "git"
            },
            {
              "lessThan": "d35b62c224e70797f8a1c37fe9bc4b3e294b7560",
              "status": "affected",
              "version": "fa788d986a3aac5069378ed04697bd06f83d3488",
              "versionType": "git"
            },
            {
              "lessThan": "ef7eed7e11d23337310ecc2c014ecaeea52719c5",
              "status": "affected",
              "version": "fa788d986a3aac5069378ed04697bd06f83d3488",
              "versionType": "git"
            },
            {
              "lessThan": "2c02c5059c78a52d170bdee4a369b470de6deb37",
              "status": "affected",
              "version": "fa788d986a3aac5069378ed04697bd06f83d3488",
              "versionType": "git"
            },
            {
              "lessThan": "ee413f30ec4fe94a0bdf32c8f042cb06fa913234",
              "status": "affected",
              "version": "fa788d986a3aac5069378ed04697bd06f83d3488",
              "versionType": "git"
            },
            {
              "lessThan": "8b1e273c6afcf00d3c40a54ada7d6aac1b503b97",
              "status": "affected",
              "version": "fa788d986a3aac5069378ed04697bd06f83d3488",
              "versionType": "git"
            },
            {
              "lessThan": "6ebfad33161afacb3e1e59ed1c2feefef70f9f97",
              "status": "affected",
              "version": "fa788d986a3aac5069378ed04697bd06f83d3488",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/core/dev.c",
            "net/packet/af_packet.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.20"
            },
            {
              "lessThan": "4.20",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npacket: annotate data-races around ignore_outgoing\n\nignore_outgoing is read locklessly from dev_queue_xmit_nit()\nand packet_getsockopt()\n\nAdd appropriate READ_ONCE()/WRITE_ONCE() annotations.\n\nsyzbot reported:\n\nBUG: KCSAN: data-race in dev_queue_xmit_nit / packet_setsockopt\n\nwrite to 0xffff888107804542 of 1 bytes by task 22618 on cpu 0:\n packet_setsockopt+0xd83/0xfd0 net/packet/af_packet.c:4003\n do_sock_setsockopt net/socket.c:2311 [inline]\n __sys_setsockopt+0x1d8/0x250 net/socket.c:2334\n __do_sys_setsockopt net/socket.c:2343 [inline]\n __se_sys_setsockopt net/socket.c:2340 [inline]\n __x64_sys_setsockopt+0x66/0x80 net/socket.c:2340\n do_syscall_64+0xd3/0x1d0\n entry_SYSCALL_64_after_hwframe+0x6d/0x75\n\nread to 0xffff888107804542 of 1 bytes by task 27 on cpu 1:\n dev_queue_xmit_nit+0x82/0x620 net/core/dev.c:2248\n xmit_one net/core/dev.c:3527 [inline]\n dev_hard_start_xmit+0xcc/0x3f0 net/core/dev.c:3547\n __dev_queue_xmit+0xf24/0x1dd0 net/core/dev.c:4335\n dev_queue_xmit include/linux/netdevice.h:3091 [inline]\n batadv_send_skb_packet+0x264/0x300 net/batman-adv/send.c:108\n batadv_send_broadcast_skb+0x24/0x30 net/batman-adv/send.c:127\n batadv_iv_ogm_send_to_if net/batman-adv/bat_iv_ogm.c:392 [inline]\n batadv_iv_ogm_emit net/batman-adv/bat_iv_ogm.c:420 [inline]\n batadv_iv_send_outstanding_bat_ogm_packet+0x3f0/0x4b0 net/batman-adv/bat_iv_ogm.c:1700\n process_one_work kernel/workqueue.c:3254 [inline]\n process_scheduled_works+0x465/0x990 kernel/workqueue.c:3335\n worker_thread+0x526/0x730 kernel/workqueue.c:3416\n kthread+0x1d1/0x210 kernel/kthread.c:388\n ret_from_fork+0x4b/0x60 arch/x86/kernel/process.c:147\n ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:243\n\nvalue changed: 0x00 -\u003e 0x01\n\nReported by Kernel Concurrency Sanitizer on:\nCPU: 1 PID: 27 Comm: kworker/u8:1 Tainted: G        W          6.8.0-syzkaller-08073-g480e035fc4c7 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024\nWorkqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:13.163Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/84c510411e321caff3c07e6cd0f917f06633cfc0"
        },
        {
          "url": "https://git.kernel.org/stable/c/68e84120319d4fc298fcdb14cf0bea6a0f64ffbd"
        },
        {
          "url": "https://git.kernel.org/stable/c/d35b62c224e70797f8a1c37fe9bc4b3e294b7560"
        },
        {
          "url": "https://git.kernel.org/stable/c/ef7eed7e11d23337310ecc2c014ecaeea52719c5"
        },
        {
          "url": "https://git.kernel.org/stable/c/2c02c5059c78a52d170bdee4a369b470de6deb37"
        },
        {
          "url": "https://git.kernel.org/stable/c/ee413f30ec4fe94a0bdf32c8f042cb06fa913234"
        },
        {
          "url": "https://git.kernel.org/stable/c/8b1e273c6afcf00d3c40a54ada7d6aac1b503b97"
        },
        {
          "url": "https://git.kernel.org/stable/c/6ebfad33161afacb3e1e59ed1c2feefef70f9f97"
        }
      ],
      "title": "packet: annotate data-races around ignore_outgoing",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26862",
    "datePublished": "2024-04-17T10:27:25.634Z",
    "dateReserved": "2024-02-19T14:20:24.184Z",
    "dateUpdated": "2025-05-04T08:58:13.163Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26773 (GCVE-0-2024-26773)

Vulnerability from cvelistv5

Published

2024-04-03 17:00

Modified

2025-05-04 08:56

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() Determine if the group block bitmap is corrupted before using ac_b_ex in ext4_mb_try_best_found() to avoid allocating blocks from a group with a corrupted block bitmap in the following concurrency and making the situation worse. ext4_mb_regular_allocator ext4_lock_group(sb, group) ext4_mb_good_group // check if the group bbitmap is corrupted ext4_mb_complex_scan_group // Scan group gets ac_b_ex but doesn't use it ext4_unlock_group(sb, group) ext4_mark_group_bitmap_corrupted(group) // The block bitmap was corrupted during // the group unlock gap. ext4_mb_try_best_found ext4_lock_group(ac->ac_sb, group) ext4_mb_use_best_found mb_mark_used // Allocating blocks in block bitmap corrupted group

References

►

URL

Tags

	https://git.kernel.org/stable/c/21f8cfe79f776287459343e9cfa6055af61328ea
	https://git.kernel.org/stable/c/260fc96283c0f594de18a1b045faf6d8fb42874d
	https://git.kernel.org/stable/c/927794a02169778c9c2e7b25c768ab3ea8c1dc03
	https://git.kernel.org/stable/c/4c21fa60a6f4606f6214a38f50612b17b2f738f5
	https://git.kernel.org/stable/c/f97e75fa4e12b0aa0224e83fcbda8853ac2adf36
	https://git.kernel.org/stable/c/0184747b552d6b5a14db3b7fcc3b792ce64dedd1
	https://git.kernel.org/stable/c/a2576ae9a35c078e488f2c573e9e6821d651fbbe
	https://git.kernel.org/stable/c/4530b3660d396a646aad91a787b6ab37cf604b53

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26773",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-03T18:50:26.209110Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:10.181Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.512Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/21f8cfe79f776287459343e9cfa6055af61328ea"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/260fc96283c0f594de18a1b045faf6d8fb42874d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/927794a02169778c9c2e7b25c768ab3ea8c1dc03"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4c21fa60a6f4606f6214a38f50612b17b2f738f5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f97e75fa4e12b0aa0224e83fcbda8853ac2adf36"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0184747b552d6b5a14db3b7fcc3b792ce64dedd1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a2576ae9a35c078e488f2c573e9e6821d651fbbe"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4530b3660d396a646aad91a787b6ab37cf604b53"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/mballoc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "21f8cfe79f776287459343e9cfa6055af61328ea",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "260fc96283c0f594de18a1b045faf6d8fb42874d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "927794a02169778c9c2e7b25c768ab3ea8c1dc03",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4c21fa60a6f4606f6214a38f50612b17b2f738f5",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f97e75fa4e12b0aa0224e83fcbda8853ac2adf36",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "0184747b552d6b5a14db3b7fcc3b792ce64dedd1",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "a2576ae9a35c078e488f2c573e9e6821d651fbbe",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4530b3660d396a646aad91a787b6ab37cf604b53",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/mballoc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.308",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.270",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.211",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.308",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.270",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.211",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found()\n\nDetermine if the group block bitmap is corrupted before using ac_b_ex in\next4_mb_try_best_found() to avoid allocating blocks from a group with a\ncorrupted block bitmap in the following concurrency and making the\nsituation worse.\n\next4_mb_regular_allocator\n  ext4_lock_group(sb, group)\n  ext4_mb_good_group\n   // check if the group bbitmap is corrupted\n  ext4_mb_complex_scan_group\n   // Scan group gets ac_b_ex but doesn\u0027t use it\n  ext4_unlock_group(sb, group)\n                           ext4_mark_group_bitmap_corrupted(group)\n                           // The block bitmap was corrupted during\n                           // the group unlock gap.\n  ext4_mb_try_best_found\n    ext4_lock_group(ac-\u003eac_sb, group)\n    ext4_mb_use_best_found\n      mb_mark_used\n      // Allocating blocks in block bitmap corrupted group"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:56:11.135Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/21f8cfe79f776287459343e9cfa6055af61328ea"
        },
        {
          "url": "https://git.kernel.org/stable/c/260fc96283c0f594de18a1b045faf6d8fb42874d"
        },
        {
          "url": "https://git.kernel.org/stable/c/927794a02169778c9c2e7b25c768ab3ea8c1dc03"
        },
        {
          "url": "https://git.kernel.org/stable/c/4c21fa60a6f4606f6214a38f50612b17b2f738f5"
        },
        {
          "url": "https://git.kernel.org/stable/c/f97e75fa4e12b0aa0224e83fcbda8853ac2adf36"
        },
        {
          "url": "https://git.kernel.org/stable/c/0184747b552d6b5a14db3b7fcc3b792ce64dedd1"
        },
        {
          "url": "https://git.kernel.org/stable/c/a2576ae9a35c078e488f2c573e9e6821d651fbbe"
        },
        {
          "url": "https://git.kernel.org/stable/c/4530b3660d396a646aad91a787b6ab37cf604b53"
        }
      ],
      "title": "ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26773",
    "datePublished": "2024-04-03T17:00:59.757Z",
    "dateReserved": "2024-02-19T14:20:24.176Z",
    "dateUpdated": "2025-05-04T08:56:11.135Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27043 (GCVE-0-2024-27043)

Vulnerability from cvelistv5

Published

2024-05-01 12:54

Modified

2025-05-04 09:02

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed in several error-handling paths. However, *pdvbdev is not set to NULL after dvbdev's deallocation, causing use-after-frees in many places, for example, in the following call chain: budget_register |-> dvb_dmxdev_init |-> dvb_register_device |-> dvb_dmxdev_release |-> dvb_unregister_device |-> dvb_remove_device |-> dvb_device_put |-> kref_put When calling dvb_unregister_device, dmxdev->dvbdev (i.e. *pdvbdev in dvb_register_device) could point to memory that had been freed in dvb_register_device. Thereafter, this pointer is transferred to kref_put and triggering a use-after-free.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d0f5c28333822f9baa5280d813124920720fd856
	https://git.kernel.org/stable/c/f20c3270f3ed5aa6919a87e4de9bf6c05fb57086
	https://git.kernel.org/stable/c/096237039d00c839f3e3a5fe6d001bf0db45b644
	https://git.kernel.org/stable/c/0d3fe80b6d175c220b3e252efc6c6777e700e98e
	https://git.kernel.org/stable/c/437a111f79a2f5b2a5f21e27fdec6f40c8768712
	https://git.kernel.org/stable/c/779e8db7efb22316c8581d6c229636d2f5694a62
	https://git.kernel.org/stable/c/35674111a043b0482a9bc69da8850a83f465b07d
	https://git.kernel.org/stable/c/b7586e902128e4fb7bfbb661cb52e4215a65637b
	https://git.kernel.org/stable/c/8c64f4cdf4e6cc5682c52523713af8c39c94e6d5

Impacted products

Vendor

Product

Version

►

Linux

Version: b61901024776b25ce7b8edc31bb1757c7382a88e
Version: b61901024776b25ce7b8edc31bb1757c7382a88e
Version: b61901024776b25ce7b8edc31bb1757c7382a88e
Version: b61901024776b25ce7b8edc31bb1757c7382a88e
Version: b61901024776b25ce7b8edc31bb1757c7382a88e
Version: b61901024776b25ce7b8edc31bb1757c7382a88e
Version: b61901024776b25ce7b8edc31bb1757c7382a88e
Version: b61901024776b25ce7b8edc31bb1757c7382a88e
Version: b61901024776b25ce7b8edc31bb1757c7382a88e

Linux

Version: 2.6.21

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.899Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d0f5c28333822f9baa5280d813124920720fd856"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f20c3270f3ed5aa6919a87e4de9bf6c05fb57086"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/096237039d00c839f3e3a5fe6d001bf0db45b644"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0d3fe80b6d175c220b3e252efc6c6777e700e98e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/437a111f79a2f5b2a5f21e27fdec6f40c8768712"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/779e8db7efb22316c8581d6c229636d2f5694a62"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/35674111a043b0482a9bc69da8850a83f465b07d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b7586e902128e4fb7bfbb661cb52e4215a65637b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8c64f4cdf4e6cc5682c52523713af8c39c94e6d5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27043",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-15T19:22:34.576999Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-15T19:22:42.564Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/media/dvb-core/dvbdev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d0f5c28333822f9baa5280d813124920720fd856",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            },
            {
              "lessThan": "f20c3270f3ed5aa6919a87e4de9bf6c05fb57086",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            },
            {
              "lessThan": "096237039d00c839f3e3a5fe6d001bf0db45b644",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            },
            {
              "lessThan": "0d3fe80b6d175c220b3e252efc6c6777e700e98e",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            },
            {
              "lessThan": "437a111f79a2f5b2a5f21e27fdec6f40c8768712",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            },
            {
              "lessThan": "779e8db7efb22316c8581d6c229636d2f5694a62",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            },
            {
              "lessThan": "35674111a043b0482a9bc69da8850a83f465b07d",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            },
            {
              "lessThan": "b7586e902128e4fb7bfbb661cb52e4215a65637b",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            },
            {
              "lessThan": "8c64f4cdf4e6cc5682c52523713af8c39c94e6d5",
              "status": "affected",
              "version": "b61901024776b25ce7b8edc31bb1757c7382a88e",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/media/dvb-core/dvbdev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.21"
            },
            {
              "lessThan": "2.6.21",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.21",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: edia: dvbdev: fix a use-after-free\n\nIn dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed\nin several error-handling paths. However, *pdvbdev is not set to NULL\nafter dvbdev\u0027s deallocation, causing use-after-frees in many places,\nfor example, in the following call chain:\n\nbudget_register\n  |-\u003e dvb_dmxdev_init\n        |-\u003e dvb_register_device\n  |-\u003e dvb_dmxdev_release\n        |-\u003e dvb_unregister_device\n              |-\u003e dvb_remove_device\n                    |-\u003e dvb_device_put\n                          |-\u003e kref_put\n\nWhen calling dvb_unregister_device, dmxdev-\u003edvbdev (i.e. *pdvbdev in\ndvb_register_device) could point to memory that had been freed in\ndvb_register_device. Thereafter, this pointer is transferred to\nkref_put and triggering a use-after-free."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:02:57.936Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d0f5c28333822f9baa5280d813124920720fd856"
        },
        {
          "url": "https://git.kernel.org/stable/c/f20c3270f3ed5aa6919a87e4de9bf6c05fb57086"
        },
        {
          "url": "https://git.kernel.org/stable/c/096237039d00c839f3e3a5fe6d001bf0db45b644"
        },
        {
          "url": "https://git.kernel.org/stable/c/0d3fe80b6d175c220b3e252efc6c6777e700e98e"
        },
        {
          "url": "https://git.kernel.org/stable/c/437a111f79a2f5b2a5f21e27fdec6f40c8768712"
        },
        {
          "url": "https://git.kernel.org/stable/c/779e8db7efb22316c8581d6c229636d2f5694a62"
        },
        {
          "url": "https://git.kernel.org/stable/c/35674111a043b0482a9bc69da8850a83f465b07d"
        },
        {
          "url": "https://git.kernel.org/stable/c/b7586e902128e4fb7bfbb661cb52e4215a65637b"
        },
        {
          "url": "https://git.kernel.org/stable/c/8c64f4cdf4e6cc5682c52523713af8c39c94e6d5"
        }
      ],
      "title": "media: edia: dvbdev: fix a use-after-free",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27043",
    "datePublished": "2024-05-01T12:54:11.197Z",
    "dateReserved": "2024-02-19T14:20:24.212Z",
    "dateUpdated": "2025-05-04T09:02:57.936Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26981 (GCVE-0-2024-26981)

Vulnerability from cvelistv5

Published

2024-05-01 05:27

Modified

2025-05-04 09:01

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix OOB in nilfs_set_de_type The size of the nilfs_type_by_mode array in the fs/nilfs2/dir.c file is defined as "S_IFMT >> S_SHIFT", but the nilfs_set_de_type() function, which uses this array, specifies the index to read from the array in the same way as "(mode & S_IFMT) >> S_SHIFT". static void nilfs_set_de_type(struct nilfs_dir_entry *de, struct inode *inode) { umode_t mode = inode->i_mode; de->file_type = nilfs_type_by_mode[(mode & S_IFMT)>>S_SHIFT]; // oob } However, when the index is determined this way, an out-of-bounds (OOB) error occurs by referring to an index that is 1 larger than the array size when the condition "mode & S_IFMT == S_IFMT" is satisfied. Therefore, a patch to resize the nilfs_type_by_mode array should be applied to prevent OOB errors.

References

►

URL

Tags

	https://git.kernel.org/stable/c/054f29e9ca05be3906544c5f2a2c7321c30a4243
	https://git.kernel.org/stable/c/90f43980ea6be4ad903e389be9a27a2a0018f1c8
	https://git.kernel.org/stable/c/7061c7efbb9e8f11ce92d6b4646405ea2b0b4de1
	https://git.kernel.org/stable/c/bdbe483da21f852c93b22557b146bc4d989260f0
	https://git.kernel.org/stable/c/897ac5306bbeb83e90c437326f7044c79a17c611
	https://git.kernel.org/stable/c/2382eae66b196c31893984a538908c3eb7506ff9
	https://git.kernel.org/stable/c/90823f8d9ecca3d5fa6b102c8e464c62f416975f
	https://git.kernel.org/stable/c/c4a7dc9523b59b3e73fd522c73e95e072f876b16

Impacted products

Vendor

Product

Version

►

Linux

Version: 2ba466d74ed74f073257f86e61519cb8f8f46184
Version: 2ba466d74ed74f073257f86e61519cb8f8f46184
Version: 2ba466d74ed74f073257f86e61519cb8f8f46184
Version: 2ba466d74ed74f073257f86e61519cb8f8f46184
Version: 2ba466d74ed74f073257f86e61519cb8f8f46184
Version: 2ba466d74ed74f073257f86e61519cb8f8f46184
Version: 2ba466d74ed74f073257f86e61519cb8f8f46184
Version: 2ba466d74ed74f073257f86e61519cb8f8f46184

Linux

Version: 2.6.30

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26981",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-17T14:33:30.572731Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-17T14:33:40.696Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.867Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/054f29e9ca05be3906544c5f2a2c7321c30a4243"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/90f43980ea6be4ad903e389be9a27a2a0018f1c8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7061c7efbb9e8f11ce92d6b4646405ea2b0b4de1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bdbe483da21f852c93b22557b146bc4d989260f0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/897ac5306bbeb83e90c437326f7044c79a17c611"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2382eae66b196c31893984a538908c3eb7506ff9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/90823f8d9ecca3d5fa6b102c8e464c62f416975f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c4a7dc9523b59b3e73fd522c73e95e072f876b16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/dir.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "054f29e9ca05be3906544c5f2a2c7321c30a4243",
              "status": "affected",
              "version": "2ba466d74ed74f073257f86e61519cb8f8f46184",
              "versionType": "git"
            },
            {
              "lessThan": "90f43980ea6be4ad903e389be9a27a2a0018f1c8",
              "status": "affected",
              "version": "2ba466d74ed74f073257f86e61519cb8f8f46184",
              "versionType": "git"
            },
            {
              "lessThan": "7061c7efbb9e8f11ce92d6b4646405ea2b0b4de1",
              "status": "affected",
              "version": "2ba466d74ed74f073257f86e61519cb8f8f46184",
              "versionType": "git"
            },
            {
              "lessThan": "bdbe483da21f852c93b22557b146bc4d989260f0",
              "status": "affected",
              "version": "2ba466d74ed74f073257f86e61519cb8f8f46184",
              "versionType": "git"
            },
            {
              "lessThan": "897ac5306bbeb83e90c437326f7044c79a17c611",
              "status": "affected",
              "version": "2ba466d74ed74f073257f86e61519cb8f8f46184",
              "versionType": "git"
            },
            {
              "lessThan": "2382eae66b196c31893984a538908c3eb7506ff9",
              "status": "affected",
              "version": "2ba466d74ed74f073257f86e61519cb8f8f46184",
              "versionType": "git"
            },
            {
              "lessThan": "90823f8d9ecca3d5fa6b102c8e464c62f416975f",
              "status": "affected",
              "version": "2ba466d74ed74f073257f86e61519cb8f8f46184",
              "versionType": "git"
            },
            {
              "lessThan": "c4a7dc9523b59b3e73fd522c73e95e072f876b16",
              "status": "affected",
              "version": "2ba466d74ed74f073257f86e61519cb8f8f46184",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/dir.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.30"
            },
            {
              "lessThan": "2.6.30",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.313",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.275",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.216",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.157",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.88",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.29",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.8",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.313",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.275",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.216",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.157",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.88",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.29",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.8",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix OOB in nilfs_set_de_type\n\nThe size of the nilfs_type_by_mode array in the fs/nilfs2/dir.c file is\ndefined as \"S_IFMT \u003e\u003e S_SHIFT\", but the nilfs_set_de_type() function,\nwhich uses this array, specifies the index to read from the array in the\nsame way as \"(mode \u0026 S_IFMT) \u003e\u003e S_SHIFT\".\n\nstatic void nilfs_set_de_type(struct nilfs_dir_entry *de, struct inode\n *inode)\n{\n\tumode_t mode = inode-\u003ei_mode;\n\n\tde-\u003efile_type = nilfs_type_by_mode[(mode \u0026 S_IFMT)\u003e\u003eS_SHIFT]; // oob\n}\n\nHowever, when the index is determined this way, an out-of-bounds (OOB)\nerror occurs by referring to an index that is 1 larger than the array size\nwhen the condition \"mode \u0026 S_IFMT == S_IFMT\" is satisfied.  Therefore, a\npatch to resize the nilfs_type_by_mode array should be applied to prevent\nOOB errors."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:01:24.942Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/054f29e9ca05be3906544c5f2a2c7321c30a4243"
        },
        {
          "url": "https://git.kernel.org/stable/c/90f43980ea6be4ad903e389be9a27a2a0018f1c8"
        },
        {
          "url": "https://git.kernel.org/stable/c/7061c7efbb9e8f11ce92d6b4646405ea2b0b4de1"
        },
        {
          "url": "https://git.kernel.org/stable/c/bdbe483da21f852c93b22557b146bc4d989260f0"
        },
        {
          "url": "https://git.kernel.org/stable/c/897ac5306bbeb83e90c437326f7044c79a17c611"
        },
        {
          "url": "https://git.kernel.org/stable/c/2382eae66b196c31893984a538908c3eb7506ff9"
        },
        {
          "url": "https://git.kernel.org/stable/c/90823f8d9ecca3d5fa6b102c8e464c62f416975f"
        },
        {
          "url": "https://git.kernel.org/stable/c/c4a7dc9523b59b3e73fd522c73e95e072f876b16"
        }
      ],
      "title": "nilfs2: fix OOB in nilfs_set_de_type",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26981",
    "datePublished": "2024-05-01T05:27:06.469Z",
    "dateReserved": "2024-02-19T14:20:24.204Z",
    "dateUpdated": "2025-05-04T09:01:24.942Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47215 (GCVE-0-2021-47215)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: kTLS, Fix crash in RX resync flow For the TLS RX resync flow, we maintain a list of TLS contexts that require some attention, to communicate their resync information to the HW. Here we fix list corruptions, by protecting the entries against movements coming from resync_handle_seq_match(), until their resync handling in napi is fully completed.

References

►

URL

Tags

	https://git.kernel.org/stable/c/ebeda7a9528ae690e6bf12791a868f0cca8391f2
	https://git.kernel.org/stable/c/cc4a9cc03faa6d8db1a6954bb536f2c1e63bdff6

Impacted products

Vendor

Product

Version

►

Linux

Version: e9ce991bce5bacf71641bd0f72f4b7c589529f40
Version: e9ce991bce5bacf71641bd0f72f4b7c589529f40

Linux

Version: 5.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.443Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ebeda7a9528ae690e6bf12791a868f0cca8391f2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cc4a9cc03faa6d8db1a6954bb536f2c1e63bdff6"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47215",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:49:52.131087Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:32:56.486Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/en_accel/ktls_rx.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ebeda7a9528ae690e6bf12791a868f0cca8391f2",
              "status": "affected",
              "version": "e9ce991bce5bacf71641bd0f72f4b7c589529f40",
              "versionType": "git"
            },
            {
              "lessThan": "cc4a9cc03faa6d8db1a6954bb536f2c1e63bdff6",
              "status": "affected",
              "version": "e9ce991bce5bacf71641bd0f72f4b7c589529f40",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/en_accel/ktls_rx.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.13"
            },
            {
              "lessThan": "5.13",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: kTLS, Fix crash in RX resync flow\n\nFor the TLS RX resync flow, we maintain a list of TLS contexts\nthat require some attention, to communicate their resync information\nto the HW.\nHere we fix list corruptions, by protecting the entries against\nmovements coming from resync_handle_seq_match(), until their resync\nhandling in napi is fully completed."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:30.599Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ebeda7a9528ae690e6bf12791a868f0cca8391f2"
        },
        {
          "url": "https://git.kernel.org/stable/c/cc4a9cc03faa6d8db1a6954bb536f2c1e63bdff6"
        }
      ],
      "title": "net/mlx5e: kTLS, Fix crash in RX resync flow",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47215",
    "datePublished": "2024-04-10T19:01:55.157Z",
    "dateReserved": "2024-04-10T18:59:19.528Z",
    "dateUpdated": "2025-05-04T07:06:30.599Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26700 (GCVE-0-2024-26700)

Vulnerability from cvelistv5

Published

2024-04-03 14:54

Modified

2025-07-11 17:19

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix MST Null Ptr for RV The change try to fix below error specific to RV platform: BUG: kernel NULL pointer dereference, address: 0000000000000008 PGD 0 P4D 0 Oops: 0000 [#1] PREEMPT SMP NOPTI CPU: 4 PID: 917 Comm: sway Not tainted 6.3.9-arch1-1 #1 124dc55df4f5272ccb409f39ef4872fc2b3376a2 Hardware name: LENOVO 20NKS01Y00/20NKS01Y00, BIOS R12ET61W(1.31 ) 07/28/2022 RIP: 0010:drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper] Code: 01 00 00 48 8b 85 60 05 00 00 48 63 80 88 00 00 00 3b 43 28 0f 8d 2e 01 00 00 48 8b 53 30 48 8d 04 80 48 8d 04 c2 48 8b 40 18 <48> 8> RSP: 0018:ffff960cc2df77d8 EFLAGS: 00010293 RAX: 0000000000000000 RBX: ffff8afb87e81280 RCX: 0000000000000224 RDX: ffff8afb9ee37c00 RSI: ffff8afb8da1a578 RDI: ffff8afb87e81280 RBP: ffff8afb83d67000 R08: 0000000000000001 R09: ffff8afb9652f850 R10: ffff960cc2df7908 R11: 0000000000000002 R12: 0000000000000000 R13: ffff8afb8d7688a0 R14: ffff8afb8da1a578 R15: 0000000000000224 FS: 00007f4dac35ce00(0000) GS:ffff8afe30b00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000000008 CR3: 000000010ddc6000 CR4: 00000000003506e0 Call Trace: <TASK> ? __die+0x23/0x70 ? page_fault_oops+0x171/0x4e0 ? plist_add+0xbe/0x100 ? exc_page_fault+0x7c/0x180 ? asm_exc_page_fault+0x26/0x30 ? drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026] ? drm_dp_atomic_find_time_slots+0x28/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026] compute_mst_dsc_configs_for_link+0x2ff/0xa40 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054] ? fill_plane_buffer_attributes+0x419/0x510 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054] compute_mst_dsc_configs_for_state+0x1e1/0x250 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054] amdgpu_dm_atomic_check+0xecd/0x1190 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054] drm_atomic_check_only+0x5c5/0xa40 drm_mode_atomic_ioctl+0x76e/0xbc0 ? _copy_to_user+0x25/0x30 ? drm_ioctl+0x296/0x4b0 ? __pfx_drm_mode_atomic_ioctl+0x10/0x10 drm_ioctl_kernel+0xcd/0x170 drm_ioctl+0x26d/0x4b0 ? __pfx_drm_mode_atomic_ioctl+0x10/0x10 amdgpu_drm_ioctl+0x4e/0x90 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054] __x64_sys_ioctl+0x94/0xd0 do_syscall_64+0x60/0x90 ? do_syscall_64+0x6c/0x90 entry_SYSCALL_64_after_hwframe+0x72/0xdc RIP: 0033:0x7f4dad17f76f Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c> RSP: 002b:00007ffd9ae859f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 000055e255a55900 RCX: 00007f4dad17f76f RDX: 00007ffd9ae85a90 RSI: 00000000c03864bc RDI: 000000000000000b RBP: 00007ffd9ae85a90 R08: 0000000000000003 R09: 0000000000000003 R10: 0000000000000000 R11: 0000000000000246 R12: 00000000c03864bc R13: 000000000000000b R14: 000055e255a7fc60 R15: 000055e255a01eb0 </TASK> Modules linked in: rfcomm snd_seq_dummy snd_hrtimer snd_seq snd_seq_device ccm cmac algif_hash algif_skcipher af_alg joydev mousedev bnep > typec libphy k10temp ipmi_msghandler roles i2c_scmi acpi_cpufreq mac_hid nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_mas> CR2: 0000000000000008 ---[ end trace 0000000000000000 ]--- RIP: 0010:drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper] Code: 01 00 00 48 8b 85 60 05 00 00 48 63 80 88 00 00 00 3b 43 28 0f 8d 2e 01 00 00 48 8b 53 30 48 8d 04 80 48 8d 04 c2 48 8b 40 18 <48> 8> RSP: 0018:ffff960cc2df77d8 EFLAGS: 00010293 RAX: 0000000000000000 RBX: ffff8afb87e81280 RCX: 0000000000000224 RDX: ffff8afb9ee37c00 RSI: ffff8afb8da1a578 RDI: ffff8afb87e81280 RBP: ffff8afb83d67000 R08: 0000000000000001 R09: ffff8afb9652f850 R10: ffff960cc2df7908 R11: 0000000000000002 R12: 0000000000000000 R13: ffff8afb8d7688a0 R14: ffff8afb8da1a578 R15: 0000000000000224 FS: 00007f4dac35ce00(0000) GS:ffff8afe30b00000(0000 ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/01d992088dce3945f70f49f34b0b911c5213c238
	https://git.kernel.org/stable/c/7407c61f43b66e90ad127d0cdd13cbc9d87141a5
	https://git.kernel.org/stable/c/5cd7185d2db76c42a9b7e69adad9591d9fca093f
	https://git.kernel.org/stable/c/e6a7df96facdcf5b1f71eb3ec26f2f9f6ad61e57

Impacted products

Vendor

Product

Version

►

Linux

Version: 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c
Version: 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c
Version: 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c
Version: 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Linux

Version: 4.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:12.975Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/01d992088dce3945f70f49f34b0b911c5213c238"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7407c61f43b66e90ad127d0cdd13cbc9d87141a5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5cd7185d2db76c42a9b7e69adad9591d9fca093f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e6a7df96facdcf5b1f71eb3ec26f2f9f6ad61e57"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26700",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:52:43.322834Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:28.912Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "01d992088dce3945f70f49f34b0b911c5213c238",
              "status": "affected",
              "version": "4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c",
              "versionType": "git"
            },
            {
              "lessThan": "7407c61f43b66e90ad127d0cdd13cbc9d87141a5",
              "status": "affected",
              "version": "4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c",
              "versionType": "git"
            },
            {
              "lessThan": "5cd7185d2db76c42a9b7e69adad9591d9fca093f",
              "status": "affected",
              "version": "4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c",
              "versionType": "git"
            },
            {
              "lessThan": "e6a7df96facdcf5b1f71eb3ec26f2f9f6ad61e57",
              "status": "affected",
              "version": "4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.15"
            },
            {
              "lessThan": "4.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.82",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix MST Null Ptr for RV\n\nThe change try to fix below error specific to RV platform:\n\nBUG: kernel NULL pointer dereference, address: 0000000000000008\nPGD 0 P4D 0\nOops: 0000 [#1] PREEMPT SMP NOPTI\nCPU: 4 PID: 917 Comm: sway Not tainted 6.3.9-arch1-1 #1 124dc55df4f5272ccb409f39ef4872fc2b3376a2\nHardware name: LENOVO 20NKS01Y00/20NKS01Y00, BIOS R12ET61W(1.31 ) 07/28/2022\nRIP: 0010:drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper]\nCode: 01 00 00 48 8b 85 60 05 00 00 48 63 80 88 00 00 00 3b 43 28 0f 8d 2e 01 00 00 48 8b 53 30 48 8d 04 80 48 8d 04 c2 48 8b 40 18 \u003c48\u003e 8\u003e\nRSP: 0018:ffff960cc2df77d8 EFLAGS: 00010293\nRAX: 0000000000000000 RBX: ffff8afb87e81280 RCX: 0000000000000224\nRDX: ffff8afb9ee37c00 RSI: ffff8afb8da1a578 RDI: ffff8afb87e81280\nRBP: ffff8afb83d67000 R08: 0000000000000001 R09: ffff8afb9652f850\nR10: ffff960cc2df7908 R11: 0000000000000002 R12: 0000000000000000\nR13: ffff8afb8d7688a0 R14: ffff8afb8da1a578 R15: 0000000000000224\nFS:  00007f4dac35ce00(0000) GS:ffff8afe30b00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000008 CR3: 000000010ddc6000 CR4: 00000000003506e0\nCall Trace:\n \u003cTASK\u003e\n ? __die+0x23/0x70\n ? page_fault_oops+0x171/0x4e0\n ? plist_add+0xbe/0x100\n ? exc_page_fault+0x7c/0x180\n ? asm_exc_page_fault+0x26/0x30\n ? drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026]\n ? drm_dp_atomic_find_time_slots+0x28/0x260 [drm_display_helper 0e67723696438d8e02b741593dd50d80b44c2026]\n compute_mst_dsc_configs_for_link+0x2ff/0xa40 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n ? fill_plane_buffer_attributes+0x419/0x510 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n compute_mst_dsc_configs_for_state+0x1e1/0x250 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n amdgpu_dm_atomic_check+0xecd/0x1190 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n drm_atomic_check_only+0x5c5/0xa40\n drm_mode_atomic_ioctl+0x76e/0xbc0\n ? _copy_to_user+0x25/0x30\n ? drm_ioctl+0x296/0x4b0\n ? __pfx_drm_mode_atomic_ioctl+0x10/0x10\n drm_ioctl_kernel+0xcd/0x170\n drm_ioctl+0x26d/0x4b0\n ? __pfx_drm_mode_atomic_ioctl+0x10/0x10\n amdgpu_drm_ioctl+0x4e/0x90 [amdgpu 62e600d2a75e9158e1cd0a243bdc8e6da040c054]\n __x64_sys_ioctl+0x94/0xd0\n do_syscall_64+0x60/0x90\n ? do_syscall_64+0x6c/0x90\n entry_SYSCALL_64_after_hwframe+0x72/0xdc\nRIP: 0033:0x7f4dad17f76f\nCode: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 \u003c89\u003e c\u003e\nRSP: 002b:00007ffd9ae859f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\nRAX: ffffffffffffffda RBX: 000055e255a55900 RCX: 00007f4dad17f76f\nRDX: 00007ffd9ae85a90 RSI: 00000000c03864bc RDI: 000000000000000b\nRBP: 00007ffd9ae85a90 R08: 0000000000000003 R09: 0000000000000003\nR10: 0000000000000000 R11: 0000000000000246 R12: 00000000c03864bc\nR13: 000000000000000b R14: 000055e255a7fc60 R15: 000055e255a01eb0\n \u003c/TASK\u003e\nModules linked in: rfcomm snd_seq_dummy snd_hrtimer snd_seq snd_seq_device ccm cmac algif_hash algif_skcipher af_alg joydev mousedev bnep \u003e\n typec libphy k10temp ipmi_msghandler roles i2c_scmi acpi_cpufreq mac_hid nft_reject_inet nf_reject_ipv4 nf_reject_ipv6 nft_reject nft_mas\u003e\nCR2: 0000000000000008\n---[ end trace 0000000000000000 ]---\nRIP: 0010:drm_dp_atomic_find_time_slots+0x5e/0x260 [drm_display_helper]\nCode: 01 00 00 48 8b 85 60 05 00 00 48 63 80 88 00 00 00 3b 43 28 0f 8d 2e 01 00 00 48 8b 53 30 48 8d 04 80 48 8d 04 c2 48 8b 40 18 \u003c48\u003e 8\u003e\nRSP: 0018:ffff960cc2df77d8 EFLAGS: 00010293\nRAX: 0000000000000000 RBX: ffff8afb87e81280 RCX: 0000000000000224\nRDX: ffff8afb9ee37c00 RSI: ffff8afb8da1a578 RDI: ffff8afb87e81280\nRBP: ffff8afb83d67000 R08: 0000000000000001 R09: ffff8afb9652f850\nR10: ffff960cc2df7908 R11: 0000000000000002 R12: 0000000000000000\nR13: ffff8afb8d7688a0 R14: ffff8afb8da1a578 R15: 0000000000000224\nFS:  00007f4dac35ce00(0000) GS:ffff8afe30b00000(0000\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-07-11T17:19:38.367Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/01d992088dce3945f70f49f34b0b911c5213c238"
        },
        {
          "url": "https://git.kernel.org/stable/c/7407c61f43b66e90ad127d0cdd13cbc9d87141a5"
        },
        {
          "url": "https://git.kernel.org/stable/c/5cd7185d2db76c42a9b7e69adad9591d9fca093f"
        },
        {
          "url": "https://git.kernel.org/stable/c/e6a7df96facdcf5b1f71eb3ec26f2f9f6ad61e57"
        }
      ],
      "title": "drm/amd/display: Fix MST Null Ptr for RV",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26700",
    "datePublished": "2024-04-03T14:54:59.997Z",
    "dateReserved": "2024-02-19T14:20:24.157Z",
    "dateUpdated": "2025-07-11T17:19:38.367Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47211 (GCVE-0-2021-47211)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: fix null pointer dereference on pointer cs_desc The pointer cs_desc return from snd_usb_find_clock_source could be null, so there is a potential null pointer dereference issue. Fix this by adding a null check before dereference.

References

►

URL

Tags

	https://git.kernel.org/stable/c/58fa50de595f152900594c28ec9915c169643739
	https://git.kernel.org/stable/c/b97053df0f04747c3c1e021ecbe99db675342954

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47211",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-21T16:04:02.891188Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-21T16:04:10.989Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.365Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/58fa50de595f152900594c28ec9915c169643739"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b97053df0f04747c3c1e021ecbe99db675342954"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "sound/usb/clock.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "58fa50de595f152900594c28ec9915c169643739",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b97053df0f04747c3c1e021ecbe99db675342954",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "sound/usb/clock.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: usb-audio: fix null pointer dereference on pointer cs_desc\n\nThe pointer cs_desc return from snd_usb_find_clock_source could\nbe null, so there is a potential null pointer dereference issue.\nFix this by adding a null check before dereference."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:27.491Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/58fa50de595f152900594c28ec9915c169643739"
        },
        {
          "url": "https://git.kernel.org/stable/c/b97053df0f04747c3c1e021ecbe99db675342954"
        }
      ],
      "title": "ALSA: usb-audio: fix null pointer dereference on pointer cs_desc",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47211",
    "datePublished": "2024-04-10T19:01:52.636Z",
    "dateReserved": "2024-04-10T18:59:19.526Z",
    "dateUpdated": "2025-05-04T07:06:27.491Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26856 (GCVE-0-2024-26856)

Vulnerability from cvelistv5

Published

2024-04-17 10:17

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net: sparx5: Fix use after free inside sparx5_del_mact_entry Based on the static analyzis of the code it looks like when an entry from the MAC table was removed, the entry was still used after being freed. More precise the vid of the mac_entry was used after calling devm_kfree on the mac_entry. The fix consists in first using the vid of the mac_entry to delete the entry from the HW and after that to free it.

References

►

URL

Tags

	https://git.kernel.org/stable/c/e46274df1100fb0c06704195bfff5bfbd418bf64
	https://git.kernel.org/stable/c/0de693d68b0a18d5e256556c7c62d92cca35ad52
	https://git.kernel.org/stable/c/e83bebb718fd1f42549358730e1206164e0861d6
	https://git.kernel.org/stable/c/71809805b95052ff551922f11660008fb3666025
	https://git.kernel.org/stable/c/89d72d4125e94aa3c2140fedd97ce07ba9e37674

Impacted products

Vendor

Product

Version

►

Linux

Version: b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2
Version: b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2
Version: b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2
Version: b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2
Version: b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26856",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-01T19:36:26.233327Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:15.853Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.666Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e46274df1100fb0c06704195bfff5bfbd418bf64"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0de693d68b0a18d5e256556c7c62d92cca35ad52"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e83bebb718fd1f42549358730e1206164e0861d6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/71809805b95052ff551922f11660008fb3666025"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/89d72d4125e94aa3c2140fedd97ce07ba9e37674"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/microchip/sparx5/sparx5_mactable.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e46274df1100fb0c06704195bfff5bfbd418bf64",
              "status": "affected",
              "version": "b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2",
              "versionType": "git"
            },
            {
              "lessThan": "0de693d68b0a18d5e256556c7c62d92cca35ad52",
              "status": "affected",
              "version": "b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2",
              "versionType": "git"
            },
            {
              "lessThan": "e83bebb718fd1f42549358730e1206164e0861d6",
              "status": "affected",
              "version": "b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2",
              "versionType": "git"
            },
            {
              "lessThan": "71809805b95052ff551922f11660008fb3666025",
              "status": "affected",
              "version": "b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2",
              "versionType": "git"
            },
            {
              "lessThan": "89d72d4125e94aa3c2140fedd97ce07ba9e37674",
              "status": "affected",
              "version": "b37a1bae742f92cc9b1f777d54e04ee3d86bbfc2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/microchip/sparx5/sparx5_mactable.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.152",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.22",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.10",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.152",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.82",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.22",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.10",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sparx5: Fix use after free inside sparx5_del_mact_entry\n\nBased on the static analyzis of the code it looks like when an entry\nfrom the MAC table was removed, the entry was still used after being\nfreed. More precise the vid of the mac_entry was used after calling\ndevm_kfree on the mac_entry.\nThe fix consists in first using the vid of the mac_entry to delete the\nentry from the HW and after that to free it."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:04.898Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e46274df1100fb0c06704195bfff5bfbd418bf64"
        },
        {
          "url": "https://git.kernel.org/stable/c/0de693d68b0a18d5e256556c7c62d92cca35ad52"
        },
        {
          "url": "https://git.kernel.org/stable/c/e83bebb718fd1f42549358730e1206164e0861d6"
        },
        {
          "url": "https://git.kernel.org/stable/c/71809805b95052ff551922f11660008fb3666025"
        },
        {
          "url": "https://git.kernel.org/stable/c/89d72d4125e94aa3c2140fedd97ce07ba9e37674"
        }
      ],
      "title": "net: sparx5: Fix use after free inside sparx5_del_mact_entry",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26856",
    "datePublished": "2024-04-17T10:17:18.475Z",
    "dateReserved": "2024-02-19T14:20:24.183Z",
    "dateUpdated": "2025-05-04T08:58:04.898Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27042 (GCVE-0-2024-27042)

Vulnerability from cvelistv5

Published

2024-05-01 12:54

Modified

2025-05-04 09:02

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix potential out-of-bounds access in 'amdgpu_discovery_reg_base_init()' The issue arises when the array 'adev->vcn.vcn_config' is accessed before checking if the index 'adev->vcn.num_vcn_inst' is within the bounds of the array. The fix involves moving the bounds check before the array access. This ensures that 'adev->vcn.num_vcn_inst' is within the bounds of the array before it is used as an index. Fixes the below: drivers/gpu/drm/amd/amdgpu/amdgpu_discovery.c:1289 amdgpu_discovery_reg_base_init() error: testing array offset 'adev->vcn.num_vcn_inst' after use.

References

►

URL

Tags

	https://git.kernel.org/stable/c/8f3e68c6a3fff53c2240762a47a0045d89371775
	https://git.kernel.org/stable/c/b33d4af102b9c1f7a83d3f0ad3cab7d2bab8f058
	https://git.kernel.org/stable/c/8db10cee51e3e11a6658742465edc21986cf1e8d
	https://git.kernel.org/stable/c/cdb637d339572398821204a1142d8d615668f1e9

Impacted products

Vendor

Product

Version

►

Linux

Version: a0ccc717c4ab3ef572f023fdceffb4b6df496a0d
Version: a0ccc717c4ab3ef572f023fdceffb4b6df496a0d
Version: a0ccc717c4ab3ef572f023fdceffb4b6df496a0d
Version: a0ccc717c4ab3ef572f023fdceffb4b6df496a0d

Linux

Version: 5.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27042",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:38:54.992056Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:22:46.280Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.883Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8f3e68c6a3fff53c2240762a47a0045d89371775"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b33d4af102b9c1f7a83d3f0ad3cab7d2bab8f058"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8db10cee51e3e11a6658742465edc21986cf1e8d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cdb637d339572398821204a1142d8d615668f1e9"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdgpu/amdgpu_discovery.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "8f3e68c6a3fff53c2240762a47a0045d89371775",
              "status": "affected",
              "version": "a0ccc717c4ab3ef572f023fdceffb4b6df496a0d",
              "versionType": "git"
            },
            {
              "lessThan": "b33d4af102b9c1f7a83d3f0ad3cab7d2bab8f058",
              "status": "affected",
              "version": "a0ccc717c4ab3ef572f023fdceffb4b6df496a0d",
              "versionType": "git"
            },
            {
              "lessThan": "8db10cee51e3e11a6658742465edc21986cf1e8d",
              "status": "affected",
              "version": "a0ccc717c4ab3ef572f023fdceffb4b6df496a0d",
              "versionType": "git"
            },
            {
              "lessThan": "cdb637d339572398821204a1142d8d615668f1e9",
              "status": "affected",
              "version": "a0ccc717c4ab3ef572f023fdceffb4b6df496a0d",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdgpu/amdgpu_discovery.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.19"
            },
            {
              "lessThan": "5.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix potential out-of-bounds access in \u0027amdgpu_discovery_reg_base_init()\u0027\n\nThe issue arises when the array \u0027adev-\u003evcn.vcn_config\u0027 is accessed\nbefore checking if the index \u0027adev-\u003evcn.num_vcn_inst\u0027 is within the\nbounds of the array.\n\nThe fix involves moving the bounds check before the array access. This\nensures that \u0027adev-\u003evcn.num_vcn_inst\u0027 is within the bounds of the array\nbefore it is used as an index.\n\nFixes the below:\ndrivers/gpu/drm/amd/amdgpu/amdgpu_discovery.c:1289 amdgpu_discovery_reg_base_init() error: testing array offset \u0027adev-\u003evcn.num_vcn_inst\u0027 after use."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:02:56.648Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/8f3e68c6a3fff53c2240762a47a0045d89371775"
        },
        {
          "url": "https://git.kernel.org/stable/c/b33d4af102b9c1f7a83d3f0ad3cab7d2bab8f058"
        },
        {
          "url": "https://git.kernel.org/stable/c/8db10cee51e3e11a6658742465edc21986cf1e8d"
        },
        {
          "url": "https://git.kernel.org/stable/c/cdb637d339572398821204a1142d8d615668f1e9"
        }
      ],
      "title": "drm/amdgpu: Fix potential out-of-bounds access in \u0027amdgpu_discovery_reg_base_init()\u0027",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27042",
    "datePublished": "2024-05-01T12:54:07.719Z",
    "dateReserved": "2024-02-19T14:20:24.212Z",
    "dateUpdated": "2025-05-04T09:02:56.648Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-0639 (GCVE-0-2024-0639)

Vulnerability from cvelistv5

Published

2024-01-17 15:14

Modified

2025-06-17 21:19

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-833 - Deadlock

Summary

A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel’s SCTP subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the system.

References

►

URL

Tags

	https://access.redhat.com/security/cve/CVE-2024-0639	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2258754	issue-tracking, x_refsource_REDHAT
	https://github.com/torvalds/linux/commit/6feb37b3b06e9049e20dcf7e23998f92c9c5be9a

Impacted products

Vendor

Product

Version

►

Version: 0 ≤

Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T18:11:35.678Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2024-0639"
          },
          {
            "name": "RHBZ#2258754",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258754"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/torvalds/linux/commit/6feb37b3b06e9049e20dcf7e23998f92c9c5be9a"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-0639",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-01-17T18:13:21.379297Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-17T21:19:18.952Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://git.kernel.org/pub/scm/linux/kernel",
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "versions": [
            {
              "lessThan": "6.5-rc1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2023-06-27T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel\u2019s SCTP subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the system."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-833",
              "description": "Deadlock",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-25T08:36:40.707Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2024-0639"
        },
        {
          "name": "RHBZ#2258754",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258754"
        },
        {
          "url": "https://github.com/torvalds/linux/commit/6feb37b3b06e9049e20dcf7e23998f92c9c5be9a"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2023-12-08T00:00:00+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2023-06-27T00:00:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "Kernel: potential deadlock on \u0026net-\u003esctp.addr_wq_lock leading to dos",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
        }
      ],
      "x_redhatCweChain": "CWE-833: Deadlock"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-0639",
    "datePublished": "2024-01-17T15:14:47.088Z",
    "dateReserved": "2024-01-17T09:18:42.812Z",
    "dateUpdated": "2025-06-17T21:19:18.952Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26948 (GCVE-0-2024-26948)

Vulnerability from cvelistv5

Published

2024-05-01 05:18

Modified

2025-07-11 17:19

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add a dc_state NULL check in dc_state_release [How] Check wheather state is NULL before releasing it.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d37a08f840485995e3fb91dad95e441b9d28a269
	https://git.kernel.org/stable/c/334b56cea5d9df5989be6cf1a5898114fa70ad98

Impacted products

Vendor

Product

Version

►

Linux

Version: 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c
Version: 4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c

Linux

Version: 4.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.670Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d37a08f840485995e3fb91dad95e441b9d28a269"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/334b56cea5d9df5989be6cf1a5898114fa70ad98"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26948",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:45:42.687315Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:51.456Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/dc/core/dc_state.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d37a08f840485995e3fb91dad95e441b9d28a269",
              "status": "affected",
              "version": "4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c",
              "versionType": "git"
            },
            {
              "lessThan": "334b56cea5d9df5989be6cf1a5898114fa70ad98",
              "status": "affected",
              "version": "4562236b3bc0a28aeb6ee93b2d8a849a4c4e1c7c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/dc/core/dc_state.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.15"
            },
            {
              "lessThan": "4.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Add a dc_state NULL check in dc_state_release\n\n[How]\nCheck wheather state is NULL before releasing it."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-07-11T17:19:41.714Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d37a08f840485995e3fb91dad95e441b9d28a269"
        },
        {
          "url": "https://git.kernel.org/stable/c/334b56cea5d9df5989be6cf1a5898114fa70ad98"
        }
      ],
      "title": "drm/amd/display: Add a dc_state NULL check in dc_state_release",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26948",
    "datePublished": "2024-05-01T05:18:21.547Z",
    "dateReserved": "2024-02-19T14:20:24.198Z",
    "dateUpdated": "2025-07-11T17:19:41.714Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47210 (GCVE-0-2021-47210)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-07-28 11:16

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tipd: Remove WARN_ON in tps6598x_block_read Calling tps6598x_block_read with a higher than allowed len can be handled by just returning an error. There's no need to crash systems with panic-on-warn enabled.

References

►

URL

Tags

	https://git.kernel.org/stable/c/2a897d384513ba7f7ef05611338b9a6ec6aeac00
	https://git.kernel.org/stable/c/30dcfcda8992dc42f18e7d35b6a1fa72372d382d
	https://git.kernel.org/stable/c/eff8b7628410cb2eb562ca0d5d1f12e27063733e
	https://git.kernel.org/stable/c/2c71811c963b6c310a29455d521d31a7ea6c5b5e
	https://git.kernel.org/stable/c/b7a0a63f3fed57d413bb857de164ea9c3984bc4e

Impacted products

Vendor

Product

Version

►

Linux

Version: 0a4c005bd1715d8b32a368ed5516a6ee7e603d18
Version: 0a4c005bd1715d8b32a368ed5516a6ee7e603d18
Version: 0a4c005bd1715d8b32a368ed5516a6ee7e603d18
Version: 0a4c005bd1715d8b32a368ed5516a6ee7e603d18
Version: 0a4c005bd1715d8b32a368ed5516a6ee7e603d18

Linux

Version: 4.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.433Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2a897d384513ba7f7ef05611338b9a6ec6aeac00"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/30dcfcda8992dc42f18e7d35b6a1fa72372d382d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/eff8b7628410cb2eb562ca0d5d1f12e27063733e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2c71811c963b6c310a29455d521d31a7ea6c5b5e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b7a0a63f3fed57d413bb857de164ea9c3984bc4e"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47210",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:49:55.335259Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:36.545Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/typec/tipd/core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "2a897d384513ba7f7ef05611338b9a6ec6aeac00",
              "status": "affected",
              "version": "0a4c005bd1715d8b32a368ed5516a6ee7e603d18",
              "versionType": "git"
            },
            {
              "lessThan": "30dcfcda8992dc42f18e7d35b6a1fa72372d382d",
              "status": "affected",
              "version": "0a4c005bd1715d8b32a368ed5516a6ee7e603d18",
              "versionType": "git"
            },
            {
              "lessThan": "eff8b7628410cb2eb562ca0d5d1f12e27063733e",
              "status": "affected",
              "version": "0a4c005bd1715d8b32a368ed5516a6ee7e603d18",
              "versionType": "git"
            },
            {
              "lessThan": "2c71811c963b6c310a29455d521d31a7ea6c5b5e",
              "status": "affected",
              "version": "0a4c005bd1715d8b32a368ed5516a6ee7e603d18",
              "versionType": "git"
            },
            {
              "lessThan": "b7a0a63f3fed57d413bb857de164ea9c3984bc4e",
              "status": "affected",
              "version": "0a4c005bd1715d8b32a368ed5516a6ee7e603d18",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/typec/tipd/core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.15"
            },
            {
              "lessThan": "4.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: tipd: Remove WARN_ON in tps6598x_block_read\n\nCalling tps6598x_block_read with a higher than allowed len can be\nhandled by just returning an error. There\u0027s no need to crash systems\nwith panic-on-warn enabled."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-07-28T11:16:17.061Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/2a897d384513ba7f7ef05611338b9a6ec6aeac00"
        },
        {
          "url": "https://git.kernel.org/stable/c/30dcfcda8992dc42f18e7d35b6a1fa72372d382d"
        },
        {
          "url": "https://git.kernel.org/stable/c/eff8b7628410cb2eb562ca0d5d1f12e27063733e"
        },
        {
          "url": "https://git.kernel.org/stable/c/2c71811c963b6c310a29455d521d31a7ea6c5b5e"
        },
        {
          "url": "https://git.kernel.org/stable/c/b7a0a63f3fed57d413bb857de164ea9c3984bc4e"
        }
      ],
      "title": "usb: typec: tipd: Remove WARN_ON in tps6598x_block_read",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47210",
    "datePublished": "2024-04-10T19:01:52.001Z",
    "dateReserved": "2024-04-10T18:59:19.526Z",
    "dateUpdated": "2025-07-28T11:16:17.061Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47196 (GCVE-0-2021-47196)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Set send and receive CQ before forwarding to the driver Preset both receive and send CQ pointers prior to call to the drivers and overwrite it later again till the mlx4 is going to be changed do not overwrite ibqp properties. This change is needed for mlx5, because in case of QP creation failure, it will go to the path of QP destroy which relies on proper CQ pointers. BUG: KASAN: use-after-free in create_qp.cold+0x164/0x16e [mlx5_ib] Write of size 8 at addr ffff8880064c55c0 by task a.out/246 CPU: 0 PID: 246 Comm: a.out Not tainted 5.15.0+ #291 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014 Call Trace: dump_stack_lvl+0x45/0x59 print_address_description.constprop.0+0x1f/0x140 kasan_report.cold+0x83/0xdf create_qp.cold+0x164/0x16e [mlx5_ib] mlx5_ib_create_qp+0x358/0x28a0 [mlx5_ib] create_qp.part.0+0x45b/0x6a0 [ib_core] ib_create_qp_user+0x97/0x150 [ib_core] ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs] ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs] ib_uverbs_ioctl+0x169/0x260 [ib_uverbs] __x64_sys_ioctl+0x866/0x14d0 do_syscall_64+0x3d/0x90 entry_SYSCALL_64_after_hwframe+0x44/0xae Allocated by task 246: kasan_save_stack+0x1b/0x40 __kasan_kmalloc+0xa4/0xd0 create_qp.part.0+0x92/0x6a0 [ib_core] ib_create_qp_user+0x97/0x150 [ib_core] ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs] ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs] ib_uverbs_ioctl+0x169/0x260 [ib_uverbs] __x64_sys_ioctl+0x866/0x14d0 do_syscall_64+0x3d/0x90 entry_SYSCALL_64_after_hwframe+0x44/0xae Freed by task 246: kasan_save_stack+0x1b/0x40 kasan_set_track+0x1c/0x30 kasan_set_free_info+0x20/0x30 __kasan_slab_free+0x10c/0x150 slab_free_freelist_hook+0xb4/0x1b0 kfree+0xe7/0x2a0 create_qp.part.0+0x52b/0x6a0 [ib_core] ib_create_qp_user+0x97/0x150 [ib_core] ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs] ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs] ib_uverbs_ioctl+0x169/0x260 [ib_uverbs] __x64_sys_ioctl+0x866/0x14d0 do_syscall_64+0x3d/0x90 entry_SYSCALL_64_after_hwframe+0x44/0xae

References

►

URL

Tags

	https://git.kernel.org/stable/c/b70e072feffa0ba5c41a99b9524b9878dee7748e
	https://git.kernel.org/stable/c/6cd7397d01c4a3e09757840299e4f114f0aa5fa0

Impacted products

Vendor

Product

Version

►

Linux

Version: 514aee660df493cd673154a6ba6bab745ec47b8c
Version: 514aee660df493cd673154a6ba6bab745ec47b8c

Linux

Version: 5.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47196",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-10T19:32:29.319944Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:15:04.498Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.459Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b70e072feffa0ba5c41a99b9524b9878dee7748e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6cd7397d01c4a3e09757840299e4f114f0aa5fa0"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/core/verbs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b70e072feffa0ba5c41a99b9524b9878dee7748e",
              "status": "affected",
              "version": "514aee660df493cd673154a6ba6bab745ec47b8c",
              "versionType": "git"
            },
            {
              "lessThan": "6cd7397d01c4a3e09757840299e4f114f0aa5fa0",
              "status": "affected",
              "version": "514aee660df493cd673154a6ba6bab745ec47b8c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/core/verbs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.15"
            },
            {
              "lessThan": "5.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/core: Set send and receive CQ before forwarding to the driver\n\nPreset both receive and send CQ pointers prior to call to the drivers and\noverwrite it later again till the mlx4 is going to be changed do not\noverwrite ibqp properties.\n\nThis change is needed for mlx5, because in case of QP creation failure, it\nwill go to the path of QP destroy which relies on proper CQ pointers.\n\n BUG: KASAN: use-after-free in create_qp.cold+0x164/0x16e [mlx5_ib]\n Write of size 8 at addr ffff8880064c55c0 by task a.out/246\n\n CPU: 0 PID: 246 Comm: a.out Not tainted 5.15.0+ #291\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\n Call Trace:\n  dump_stack_lvl+0x45/0x59\n  print_address_description.constprop.0+0x1f/0x140\n  kasan_report.cold+0x83/0xdf\n  create_qp.cold+0x164/0x16e [mlx5_ib]\n  mlx5_ib_create_qp+0x358/0x28a0 [mlx5_ib]\n  create_qp.part.0+0x45b/0x6a0 [ib_core]\n  ib_create_qp_user+0x97/0x150 [ib_core]\n  ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs]\n  ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs]\n  ib_uverbs_ioctl+0x169/0x260 [ib_uverbs]\n  __x64_sys_ioctl+0x866/0x14d0\n  do_syscall_64+0x3d/0x90\n  entry_SYSCALL_64_after_hwframe+0x44/0xae\n\n Allocated by task 246:\n  kasan_save_stack+0x1b/0x40\n  __kasan_kmalloc+0xa4/0xd0\n  create_qp.part.0+0x92/0x6a0 [ib_core]\n  ib_create_qp_user+0x97/0x150 [ib_core]\n  ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs]\n  ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs]\n  ib_uverbs_ioctl+0x169/0x260 [ib_uverbs]\n  __x64_sys_ioctl+0x866/0x14d0\n  do_syscall_64+0x3d/0x90\n  entry_SYSCALL_64_after_hwframe+0x44/0xae\n\n Freed by task 246:\n  kasan_save_stack+0x1b/0x40\n  kasan_set_track+0x1c/0x30\n  kasan_set_free_info+0x20/0x30\n  __kasan_slab_free+0x10c/0x150\n  slab_free_freelist_hook+0xb4/0x1b0\n  kfree+0xe7/0x2a0\n  create_qp.part.0+0x52b/0x6a0 [ib_core]\n  ib_create_qp_user+0x97/0x150 [ib_core]\n  ib_uverbs_handler_UVERBS_METHOD_QP_CREATE+0x92c/0x1250 [ib_uverbs]\n  ib_uverbs_cmd_verbs+0x1c38/0x3150 [ib_uverbs]\n  ib_uverbs_ioctl+0x169/0x260 [ib_uverbs]\n  __x64_sys_ioctl+0x866/0x14d0\n  do_syscall_64+0x3d/0x90\n  entry_SYSCALL_64_after_hwframe+0x44/0xae"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:10.759Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b70e072feffa0ba5c41a99b9524b9878dee7748e"
        },
        {
          "url": "https://git.kernel.org/stable/c/6cd7397d01c4a3e09757840299e4f114f0aa5fa0"
        }
      ],
      "title": "RDMA/core: Set send and receive CQ before forwarding to the driver",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47196",
    "datePublished": "2024-04-10T18:56:32.634Z",
    "dateReserved": "2024-03-25T09:12:14.115Z",
    "dateUpdated": "2025-05-04T07:06:10.759Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26610 (GCVE-0-2024-26610)

Vulnerability from cvelistv5

Published

2024-02-29 15:52

Modified

2025-05-04 08:52

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix a memory corruption iwl_fw_ini_trigger_tlv::data is a pointer to a __le32, which means that if we copy to iwl_fw_ini_trigger_tlv::data + offset while offset is in bytes, we'll write past the buffer.

References

►

URL

Tags

	https://git.kernel.org/stable/c/05dd9facfb9a1e056752c0901c6e86416037d15a
	https://git.kernel.org/stable/c/99a23462fe1a6f709f0fda3ebbe8b6b193ac75bd
	https://git.kernel.org/stable/c/aa2cc9363926991ba74411e3aa0a0ea82c1ffe32
	https://git.kernel.org/stable/c/870171899d75d43e3d14360f3a4850e90a9c289b
	https://git.kernel.org/stable/c/f32a81999d0b8e5ce60afb5f6a3dd7241c17dd67
	https://git.kernel.org/stable/c/cf4a0d840ecc72fcf16198d5e9c505ab7d5a5e4d

Impacted products

Vendor

Product

Version

►

Linux

Version: cf29c5b66b9f83939367d90679eb68cdfa2f0356
Version: cf29c5b66b9f83939367d90679eb68cdfa2f0356
Version: cf29c5b66b9f83939367d90679eb68cdfa2f0356
Version: cf29c5b66b9f83939367d90679eb68cdfa2f0356
Version: cf29c5b66b9f83939367d90679eb68cdfa2f0356
Version: cf29c5b66b9f83939367d90679eb68cdfa2f0356

Linux

Version: 5.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26610",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-12T18:22:31.931608Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:28.637Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:07:19.572Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/05dd9facfb9a1e056752c0901c6e86416037d15a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/99a23462fe1a6f709f0fda3ebbe8b6b193ac75bd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/aa2cc9363926991ba74411e3aa0a0ea82c1ffe32"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/870171899d75d43e3d14360f3a4850e90a9c289b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f32a81999d0b8e5ce60afb5f6a3dd7241c17dd67"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cf4a0d840ecc72fcf16198d5e9c505ab7d5a5e4d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/intel/iwlwifi/iwl-dbg-tlv.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "05dd9facfb9a1e056752c0901c6e86416037d15a",
              "status": "affected",
              "version": "cf29c5b66b9f83939367d90679eb68cdfa2f0356",
              "versionType": "git"
            },
            {
              "lessThan": "99a23462fe1a6f709f0fda3ebbe8b6b193ac75bd",
              "status": "affected",
              "version": "cf29c5b66b9f83939367d90679eb68cdfa2f0356",
              "versionType": "git"
            },
            {
              "lessThan": "aa2cc9363926991ba74411e3aa0a0ea82c1ffe32",
              "status": "affected",
              "version": "cf29c5b66b9f83939367d90679eb68cdfa2f0356",
              "versionType": "git"
            },
            {
              "lessThan": "870171899d75d43e3d14360f3a4850e90a9c289b",
              "status": "affected",
              "version": "cf29c5b66b9f83939367d90679eb68cdfa2f0356",
              "versionType": "git"
            },
            {
              "lessThan": "f32a81999d0b8e5ce60afb5f6a3dd7241c17dd67",
              "status": "affected",
              "version": "cf29c5b66b9f83939367d90679eb68cdfa2f0356",
              "versionType": "git"
            },
            {
              "lessThan": "cf4a0d840ecc72fcf16198d5e9c505ab7d5a5e4d",
              "status": "affected",
              "version": "cf29c5b66b9f83939367d90679eb68cdfa2f0356",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/intel/iwlwifi/iwl-dbg-tlv.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.5"
            },
            {
              "lessThan": "5.5",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.76",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.15",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.76",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.15",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.3",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: iwlwifi: fix a memory corruption\n\niwl_fw_ini_trigger_tlv::data is a pointer to a __le32, which means that\nif we copy to iwl_fw_ini_trigger_tlv::data + offset while offset is in\nbytes, we\u0027ll write past the buffer."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:52:16.227Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/05dd9facfb9a1e056752c0901c6e86416037d15a"
        },
        {
          "url": "https://git.kernel.org/stable/c/99a23462fe1a6f709f0fda3ebbe8b6b193ac75bd"
        },
        {
          "url": "https://git.kernel.org/stable/c/aa2cc9363926991ba74411e3aa0a0ea82c1ffe32"
        },
        {
          "url": "https://git.kernel.org/stable/c/870171899d75d43e3d14360f3a4850e90a9c289b"
        },
        {
          "url": "https://git.kernel.org/stable/c/f32a81999d0b8e5ce60afb5f6a3dd7241c17dd67"
        },
        {
          "url": "https://git.kernel.org/stable/c/cf4a0d840ecc72fcf16198d5e9c505ab7d5a5e4d"
        }
      ],
      "title": "wifi: iwlwifi: fix a memory corruption",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26610",
    "datePublished": "2024-02-29T15:52:15.796Z",
    "dateReserved": "2024-02-19T14:20:24.130Z",
    "dateUpdated": "2025-05-04T08:52:16.227Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48650 (GCVE-0-2022-48650)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 08:20

Severity ?

4.7 (Medium) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts() Commit 8f394da36a36 ("scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG") made the __qlt_24xx_handle_abts() function return early if tcm_qla2xxx_find_cmd_by_tag() didn't find a command, but it missed to clean up the allocated memory for the management command.

References

►

URL

Tags

	https://git.kernel.org/stable/c/89df49e561b4a8948521fc3f8a013012eaa08f82
	https://git.kernel.org/stable/c/6a4236ed47f5b0a57eb6b8fb1c351b15b3d341d7
	https://git.kernel.org/stable/c/601be20fc6a1b762044d2398befffd6bf236cebf

Impacted products

Vendor

Product

Version

►

Linux

Version: 8f394da36a361cbe0e1e8b1d4213e5598c8095ac
Version: 8f394da36a361cbe0e1e8b1d4213e5598c8095ac
Version: 8f394da36a361cbe0e1e8b1d4213e5598c8095ac

Linux

Version: 5.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.695Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/89df49e561b4a8948521fc3f8a013012eaa08f82"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6a4236ed47f5b0a57eb6b8fb1c351b15b3d341d7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/601be20fc6a1b762044d2398befffd6bf236cebf"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 4.7,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48650",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-30T16:03:23.433652Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-29T15:53:30.475Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/qla2xxx/qla_target.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "89df49e561b4a8948521fc3f8a013012eaa08f82",
              "status": "affected",
              "version": "8f394da36a361cbe0e1e8b1d4213e5598c8095ac",
              "versionType": "git"
            },
            {
              "lessThan": "6a4236ed47f5b0a57eb6b8fb1c351b15b3d341d7",
              "status": "affected",
              "version": "8f394da36a361cbe0e1e8b1d4213e5598c8095ac",
              "versionType": "git"
            },
            {
              "lessThan": "601be20fc6a1b762044d2398befffd6bf236cebf",
              "status": "affected",
              "version": "8f394da36a361cbe0e1e8b1d4213e5598c8095ac",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/qla2xxx/qla_target.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.11"
            },
            {
              "lessThan": "5.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts()\n\nCommit 8f394da36a36 (\"scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG\")\nmade the __qlt_24xx_handle_abts() function return early if\ntcm_qla2xxx_find_cmd_by_tag() didn\u0027t find a command, but it missed to clean\nup the allocated memory for the management command."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:34.481Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/89df49e561b4a8948521fc3f8a013012eaa08f82"
        },
        {
          "url": "https://git.kernel.org/stable/c/6a4236ed47f5b0a57eb6b8fb1c351b15b3d341d7"
        },
        {
          "url": "https://git.kernel.org/stable/c/601be20fc6a1b762044d2398befffd6bf236cebf"
        }
      ],
      "title": "scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48650",
    "datePublished": "2024-04-28T13:00:37.695Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:34.481Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52590 (GCVE-0-2023-52590)

Vulnerability from cvelistv5

Published

2024-03-06 06:45

Modified

2025-05-04 07:39

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ocfs2: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent does not change. Change ocfs2 rename code to avoid touching renamed directory if its parent does not change as without locking that can corrupt the filesystem.

References

►

URL

Tags

	https://git.kernel.org/stable/c/de940cede3c41624e2de27f805b490999f419df9
	https://git.kernel.org/stable/c/9d618d19b29c2943527e3a43da0a35aea91062fc

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.283Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/de940cede3c41624e2de27f805b490999f419df9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9d618d19b29c2943527e3a43da0a35aea91062fc"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52590",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:55:58.510084Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:31.632Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/ocfs2/namei.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "de940cede3c41624e2de27f805b490999f419df9",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "9d618d19b29c2943527e3a43da0a35aea91062fc",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/ocfs2/namei.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nocfs2: Avoid touching renamed directory if parent does not change\n\nThe VFS will not be locking moved directory if its parent does not\nchange. Change ocfs2 rename code to avoid touching renamed directory if\nits parent does not change as without locking that can corrupt the\nfilesystem."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:39:21.491Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/de940cede3c41624e2de27f805b490999f419df9"
        },
        {
          "url": "https://git.kernel.org/stable/c/9d618d19b29c2943527e3a43da0a35aea91062fc"
        }
      ],
      "title": "ocfs2: Avoid touching renamed directory if parent does not change",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52590",
    "datePublished": "2024-03-06T06:45:22.954Z",
    "dateReserved": "2024-03-02T21:55:42.570Z",
    "dateUpdated": "2025-05-04T07:39:21.491Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47192 (GCVE-0-2021-47192)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 12:41

Severity ?

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: core: sysfs: Fix hang when device state is set via sysfs This fixes a regression added with: commit f0f82e2476f6 ("scsi: core: Fix capacity set to zero after offlinining device") The problem is that after iSCSI recovery, iscsid will call into the kernel to set the dev's state to running, and with that patch we now call scsi_rescan_device() with the state_mutex held. If the SCSI error handler thread is just starting to test the device in scsi_send_eh_cmnd() then it's going to try to grab the state_mutex. We are then stuck, because when scsi_rescan_device() tries to send its I/O scsi_queue_rq() calls -> scsi_host_queue_ready() -> scsi_host_in_recovery() which will return true (the host state is still in recovery) and I/O will just be requeued. scsi_send_eh_cmnd() will then never be able to grab the state_mutex to finish error handling. To prevent the deadlock move the rescan-related code to after we drop the state_mutex. This also adds a check for if we are already in the running state. This prevents extra scans and helps the iscsid case where if the transport class has already onlined the device during its recovery process then we don't need userspace to do it again plus possibly block that daemon.

References

►

URL

Tags

	https://git.kernel.org/stable/c/edd783162bf2385b43de6764f2d4c6e9f4f6be27
	https://git.kernel.org/stable/c/a792e0128d232251edb5fdf42fb0f9fbb0b44a73
	https://git.kernel.org/stable/c/bcc0e3175a976b7fa9a353960808adb0bb49ead8
	https://git.kernel.org/stable/c/4edd8cd4e86dd3047e5294bbefcc0a08f66a430f

Impacted products

Vendor

Product

Version

►

Linux

Version: 69aa1a1a569f5c6d554b59352130ef363342ed4c
Version: 711459514e297d748f15ba1f5292a3276c3d1dd0
Version: f0f82e2476f6adb9c7a0135cfab8091456990c99
Version: f0f82e2476f6adb9c7a0135cfab8091456990c99
Version: c6751ce1a2a415a78e4f5b621628da03196b804c

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "NONE",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2021-47192",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-10T19:44:37.430694Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-04T20:19:53.680Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.175Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/edd783162bf2385b43de6764f2d4c6e9f4f6be27"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a792e0128d232251edb5fdf42fb0f9fbb0b44a73"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bcc0e3175a976b7fa9a353960808adb0bb49ead8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4edd8cd4e86dd3047e5294bbefcc0a08f66a430f"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/scsi_sysfs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "edd783162bf2385b43de6764f2d4c6e9f4f6be27",
              "status": "affected",
              "version": "69aa1a1a569f5c6d554b59352130ef363342ed4c",
              "versionType": "git"
            },
            {
              "lessThan": "a792e0128d232251edb5fdf42fb0f9fbb0b44a73",
              "status": "affected",
              "version": "711459514e297d748f15ba1f5292a3276c3d1dd0",
              "versionType": "git"
            },
            {
              "lessThan": "bcc0e3175a976b7fa9a353960808adb0bb49ead8",
              "status": "affected",
              "version": "f0f82e2476f6adb9c7a0135cfab8091456990c99",
              "versionType": "git"
            },
            {
              "lessThan": "4edd8cd4e86dd3047e5294bbefcc0a08f66a430f",
              "status": "affected",
              "version": "f0f82e2476f6adb9c7a0135cfab8091456990c99",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "c6751ce1a2a415a78e4f5b621628da03196b804c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/scsi_sysfs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "versionStartIncluding": "5.4.143",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "5.10.61",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.13.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: core: sysfs: Fix hang when device state is set via sysfs\n\nThis fixes a regression added with:\n\ncommit f0f82e2476f6 (\"scsi: core: Fix capacity set to zero after\nofflinining device\")\n\nThe problem is that after iSCSI recovery, iscsid will call into the kernel\nto set the dev\u0027s state to running, and with that patch we now call\nscsi_rescan_device() with the state_mutex held. If the SCSI error handler\nthread is just starting to test the device in scsi_send_eh_cmnd() then it\u0027s\ngoing to try to grab the state_mutex.\n\nWe are then stuck, because when scsi_rescan_device() tries to send its I/O\nscsi_queue_rq() calls -\u003e scsi_host_queue_ready() -\u003e scsi_host_in_recovery()\nwhich will return true (the host state is still in recovery) and I/O will\njust be requeued. scsi_send_eh_cmnd() will then never be able to grab the\nstate_mutex to finish error handling.\n\nTo prevent the deadlock move the rescan-related code to after we drop the\nstate_mutex.\n\nThis also adds a check for if we are already in the running state. This\nprevents extra scans and helps the iscsid case where if the transport class\nhas already onlined the device during its recovery process then we don\u0027t\nneed userspace to do it again plus possibly block that daemon."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:41:12.961Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/edd783162bf2385b43de6764f2d4c6e9f4f6be27"
        },
        {
          "url": "https://git.kernel.org/stable/c/a792e0128d232251edb5fdf42fb0f9fbb0b44a73"
        },
        {
          "url": "https://git.kernel.org/stable/c/bcc0e3175a976b7fa9a353960808adb0bb49ead8"
        },
        {
          "url": "https://git.kernel.org/stable/c/4edd8cd4e86dd3047e5294bbefcc0a08f66a430f"
        }
      ],
      "title": "scsi: core: sysfs: Fix hang when device state is set via sysfs",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47192",
    "datePublished": "2024-04-10T18:56:30.097Z",
    "dateReserved": "2024-03-25T09:12:14.113Z",
    "dateUpdated": "2025-05-04T12:41:12.961Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26951 (GCVE-0-2024-26951)

Vulnerability from cvelistv5

Published

2024-05-01 05:18

Modified

2025-05-04 09:00

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: wireguard: netlink: check for dangling peer via is_dead instead of empty list If all peers are removed via wg_peer_remove_all(), rather than setting peer_list to empty, the peer is added to a temporary list with a head on the stack of wg_peer_remove_all(). If a netlink dump is resumed and the cursored peer is one that has been removed via wg_peer_remove_all(), it will iterate from that peer and then attempt to dump freed peers. Fix this by instead checking peer->is_dead, which was explictly created for this purpose. Also move up the device_update_lock lockdep assertion, since reading is_dead relies on that. It can be reproduced by a small script like: echo "Setting config..." ip link add dev wg0 type wireguard wg setconf wg0 /big-config ( while true; do echo "Showing config..." wg showconf wg0 > /dev/null done ) & sleep 4 wg setconf wg0 <(printf "[Peer]\nPublicKey=$(wg genkey)\n") Resulting in: BUG: KASAN: slab-use-after-free in __lock_acquire+0x182a/0x1b20 Read of size 8 at addr ffff88811956ec70 by task wg/59 CPU: 2 PID: 59 Comm: wg Not tainted 6.8.0-rc2-debug+ #5 Call Trace: <TASK> dump_stack_lvl+0x47/0x70 print_address_description.constprop.0+0x2c/0x380 print_report+0xab/0x250 kasan_report+0xba/0xf0 __lock_acquire+0x182a/0x1b20 lock_acquire+0x191/0x4b0 down_read+0x80/0x440 get_peer+0x140/0xcb0 wg_get_device_dump+0x471/0x1130

References

►

URL

Tags

	https://git.kernel.org/stable/c/f52be46e3e6ecefc2539119784324f0cbc09620a
	https://git.kernel.org/stable/c/710a177f347282eea162aec8712beb1f42d5ad87
	https://git.kernel.org/stable/c/b7cea3a9af0853fdbb1b16633a458f991dde6aac
	https://git.kernel.org/stable/c/13d107794304306164481d31ce33f8fdb25a9c04
	https://git.kernel.org/stable/c/7bedfe4cfa38771840a355970e4437cd52d4046b
	https://git.kernel.org/stable/c/302b2dfc013baca3dea7ceda383930d9297d231d
	https://git.kernel.org/stable/c/55b6c738673871c9b0edae05d0c97995c1ff08c4

Impacted products

Vendor

Product

Version

►

Linux

Version: 5.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.788Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f52be46e3e6ecefc2539119784324f0cbc09620a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/710a177f347282eea162aec8712beb1f42d5ad87"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b7cea3a9af0853fdbb1b16633a458f991dde6aac"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/13d107794304306164481d31ce33f8fdb25a9c04"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7bedfe4cfa38771840a355970e4437cd52d4046b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/302b2dfc013baca3dea7ceda383930d9297d231d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/55b6c738673871c9b0edae05d0c97995c1ff08c4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26951",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:45:36.397018Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:32:58.386Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireguard/netlink.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f52be46e3e6ecefc2539119784324f0cbc09620a",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "710a177f347282eea162aec8712beb1f42d5ad87",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "b7cea3a9af0853fdbb1b16633a458f991dde6aac",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "13d107794304306164481d31ce33f8fdb25a9c04",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "7bedfe4cfa38771840a355970e4437cd52d4046b",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "302b2dfc013baca3dea7ceda383930d9297d231d",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            },
            {
              "lessThan": "55b6c738673871c9b0edae05d0c97995c1ff08c4",
              "status": "affected",
              "version": "e7096c131e5161fa3b8e52a650d7719d2857adfd",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireguard/netlink.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.6"
            },
            {
              "lessThan": "5.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: netlink: check for dangling peer via is_dead instead of empty list\n\nIf all peers are removed via wg_peer_remove_all(), rather than setting\npeer_list to empty, the peer is added to a temporary list with a head on\nthe stack of wg_peer_remove_all(). If a netlink dump is resumed and the\ncursored peer is one that has been removed via wg_peer_remove_all(), it\nwill iterate from that peer and then attempt to dump freed peers.\n\nFix this by instead checking peer-\u003eis_dead, which was explictly created\nfor this purpose. Also move up the device_update_lock lockdep assertion,\nsince reading is_dead relies on that.\n\nIt can be reproduced by a small script like:\n\n    echo \"Setting config...\"\n    ip link add dev wg0 type wireguard\n    wg setconf wg0 /big-config\n    (\n            while true; do\n                    echo \"Showing config...\"\n                    wg showconf wg0 \u003e /dev/null\n            done\n    ) \u0026\n    sleep 4\n    wg setconf wg0 \u003c(printf \"[Peer]\\nPublicKey=$(wg genkey)\\n\")\n\nResulting in:\n\n    BUG: KASAN: slab-use-after-free in __lock_acquire+0x182a/0x1b20\n    Read of size 8 at addr ffff88811956ec70 by task wg/59\n    CPU: 2 PID: 59 Comm: wg Not tainted 6.8.0-rc2-debug+ #5\n    Call Trace:\n     \u003cTASK\u003e\n     dump_stack_lvl+0x47/0x70\n     print_address_description.constprop.0+0x2c/0x380\n     print_report+0xab/0x250\n     kasan_report+0xba/0xf0\n     __lock_acquire+0x182a/0x1b20\n     lock_acquire+0x191/0x4b0\n     down_read+0x80/0x440\n     get_peer+0x140/0xcb0\n     wg_get_device_dump+0x471/0x1130"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:00:32.262Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f52be46e3e6ecefc2539119784324f0cbc09620a"
        },
        {
          "url": "https://git.kernel.org/stable/c/710a177f347282eea162aec8712beb1f42d5ad87"
        },
        {
          "url": "https://git.kernel.org/stable/c/b7cea3a9af0853fdbb1b16633a458f991dde6aac"
        },
        {
          "url": "https://git.kernel.org/stable/c/13d107794304306164481d31ce33f8fdb25a9c04"
        },
        {
          "url": "https://git.kernel.org/stable/c/7bedfe4cfa38771840a355970e4437cd52d4046b"
        },
        {
          "url": "https://git.kernel.org/stable/c/302b2dfc013baca3dea7ceda383930d9297d231d"
        },
        {
          "url": "https://git.kernel.org/stable/c/55b6c738673871c9b0edae05d0c97995c1ff08c4"
        }
      ],
      "title": "wireguard: netlink: check for dangling peer via is_dead instead of empty list",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26951",
    "datePublished": "2024-05-01T05:18:34.520Z",
    "dateReserved": "2024-02-19T14:20:24.198Z",
    "dateUpdated": "2025-05-04T09:00:32.262Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26825 (GCVE-0-2024-26825)

Vulnerability from cvelistv5

Published

2024-04-17 09:43

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: free rx_data_reassembly skb on NCI device cleanup rx_data_reassembly skb is stored during NCI data exchange for processing fragmented packets. It is dropped only when the last fragment is processed or when an NTF packet with NCI_OP_RF_DEACTIVATE_NTF opcode is received. However, the NCI device may be deallocated before that which leads to skb leak. As by design the rx_data_reassembly skb is bound to the NCI device and nothing prevents the device to be freed before the skb is processed in some way and cleaned, free it on the NCI device cleanup. Found by Linux Verification Center (linuxtesting.org) with Syzkaller.

References

►

URL

Tags

	https://git.kernel.org/stable/c/7e9a8498658b398bf11b8e388005fa54e40aed81
	https://git.kernel.org/stable/c/71349abe3aba7fedcab5b3fcd7aa82371fb5ccbf
	https://git.kernel.org/stable/c/2f6d16f0520d6505241629ee2f5c131b547d5f9d
	https://git.kernel.org/stable/c/471c9ede8061357b43a116fa692e70d91941ac23
	https://git.kernel.org/stable/c/5c0c5ffaed73cbae6c317374dc32ba6cacc60895
	https://git.kernel.org/stable/c/16d3f507b0fa70453dc54550df093d6e9ac630c1
	https://git.kernel.org/stable/c/a3d90fb5c23f29ba59c04005ae76c5228cef2be9
	https://git.kernel.org/stable/c/bfb007aebe6bff451f7f3a4be19f4f286d0d5d9c

Impacted products

Vendor

Product

Version

►

Linux

Version: 6a2968aaf50c7a22fced77a5e24aa636281efca8
Version: 6a2968aaf50c7a22fced77a5e24aa636281efca8
Version: 6a2968aaf50c7a22fced77a5e24aa636281efca8
Version: 6a2968aaf50c7a22fced77a5e24aa636281efca8
Version: 6a2968aaf50c7a22fced77a5e24aa636281efca8
Version: 6a2968aaf50c7a22fced77a5e24aa636281efca8
Version: 6a2968aaf50c7a22fced77a5e24aa636281efca8
Version: 6a2968aaf50c7a22fced77a5e24aa636281efca8

Linux

Version: 3.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26825",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:41:44.795216Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:48:52.594Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.587Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7e9a8498658b398bf11b8e388005fa54e40aed81"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/71349abe3aba7fedcab5b3fcd7aa82371fb5ccbf"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2f6d16f0520d6505241629ee2f5c131b547d5f9d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/471c9ede8061357b43a116fa692e70d91941ac23"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5c0c5ffaed73cbae6c317374dc32ba6cacc60895"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/16d3f507b0fa70453dc54550df093d6e9ac630c1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a3d90fb5c23f29ba59c04005ae76c5228cef2be9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bfb007aebe6bff451f7f3a4be19f4f286d0d5d9c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/nfc/nci/core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "7e9a8498658b398bf11b8e388005fa54e40aed81",
              "status": "affected",
              "version": "6a2968aaf50c7a22fced77a5e24aa636281efca8",
              "versionType": "git"
            },
            {
              "lessThan": "71349abe3aba7fedcab5b3fcd7aa82371fb5ccbf",
              "status": "affected",
              "version": "6a2968aaf50c7a22fced77a5e24aa636281efca8",
              "versionType": "git"
            },
            {
              "lessThan": "2f6d16f0520d6505241629ee2f5c131b547d5f9d",
              "status": "affected",
              "version": "6a2968aaf50c7a22fced77a5e24aa636281efca8",
              "versionType": "git"
            },
            {
              "lessThan": "471c9ede8061357b43a116fa692e70d91941ac23",
              "status": "affected",
              "version": "6a2968aaf50c7a22fced77a5e24aa636281efca8",
              "versionType": "git"
            },
            {
              "lessThan": "5c0c5ffaed73cbae6c317374dc32ba6cacc60895",
              "status": "affected",
              "version": "6a2968aaf50c7a22fced77a5e24aa636281efca8",
              "versionType": "git"
            },
            {
              "lessThan": "16d3f507b0fa70453dc54550df093d6e9ac630c1",
              "status": "affected",
              "version": "6a2968aaf50c7a22fced77a5e24aa636281efca8",
              "versionType": "git"
            },
            {
              "lessThan": "a3d90fb5c23f29ba59c04005ae76c5228cef2be9",
              "status": "affected",
              "version": "6a2968aaf50c7a22fced77a5e24aa636281efca8",
              "versionType": "git"
            },
            {
              "lessThan": "bfb007aebe6bff451f7f3a4be19f4f286d0d5d9c",
              "status": "affected",
              "version": "6a2968aaf50c7a22fced77a5e24aa636281efca8",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/nfc/nci/core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.2"
            },
            {
              "lessThan": "3.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.307",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.269",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.79",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.307",
                  "versionStartIncluding": "3.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.269",
                  "versionStartIncluding": "3.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "versionStartIncluding": "3.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "3.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.79",
                  "versionStartIncluding": "3.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "versionStartIncluding": "3.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "3.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "3.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfc: nci: free rx_data_reassembly skb on NCI device cleanup\n\nrx_data_reassembly skb is stored during NCI data exchange for processing\nfragmented packets. It is dropped only when the last fragment is processed\nor when an NTF packet with NCI_OP_RF_DEACTIVATE_NTF opcode is received.\nHowever, the NCI device may be deallocated before that which leads to skb\nleak.\n\nAs by design the rx_data_reassembly skb is bound to the NCI device and\nnothing prevents the device to be freed before the skb is processed in\nsome way and cleaned, free it on the NCI device cleanup.\n\nFound by Linux Verification Center (linuxtesting.org) with Syzkaller."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:22.904Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/7e9a8498658b398bf11b8e388005fa54e40aed81"
        },
        {
          "url": "https://git.kernel.org/stable/c/71349abe3aba7fedcab5b3fcd7aa82371fb5ccbf"
        },
        {
          "url": "https://git.kernel.org/stable/c/2f6d16f0520d6505241629ee2f5c131b547d5f9d"
        },
        {
          "url": "https://git.kernel.org/stable/c/471c9ede8061357b43a116fa692e70d91941ac23"
        },
        {
          "url": "https://git.kernel.org/stable/c/5c0c5ffaed73cbae6c317374dc32ba6cacc60895"
        },
        {
          "url": "https://git.kernel.org/stable/c/16d3f507b0fa70453dc54550df093d6e9ac630c1"
        },
        {
          "url": "https://git.kernel.org/stable/c/a3d90fb5c23f29ba59c04005ae76c5228cef2be9"
        },
        {
          "url": "https://git.kernel.org/stable/c/bfb007aebe6bff451f7f3a4be19f4f286d0d5d9c"
        }
      ],
      "title": "nfc: nci: free rx_data_reassembly skb on NCI device cleanup",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26825",
    "datePublished": "2024-04-17T09:43:51.114Z",
    "dateReserved": "2024-02-19T14:20:24.181Z",
    "dateUpdated": "2025-05-04T08:57:22.904Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52652 (GCVE-0-2023-52652)

Vulnerability from cvelistv5

Published

2024-05-01 13:03

Modified

2025-05-04 07:40

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: NTB: fix possible name leak in ntb_register_device() If device_register() fails in ntb_register_device(), the device name allocated by dev_set_name() should be freed. As per the comment in device_register(), callers should use put_device() to give up the reference in the error path. So fix this by calling put_device() in the error path so that the name can be freed in kobject_cleanup(). As a result of this, put_device() in the error path of ntb_register_device() is removed and the actual error is returned. [mani: reworded commit message]

References

►

URL

Tags

	https://git.kernel.org/stable/c/a62b9f3d7bbfac874cc0c638bc1776dcf1f8ec06
	https://git.kernel.org/stable/c/6632a54ac8057cc0b0d789c6f73883e871bcd25c
	https://git.kernel.org/stable/c/a039690d323221eb5865f1f31db3ec264e7a14b6
	https://git.kernel.org/stable/c/e8025439ef8e16029dc313d78a351ef192469b7b
	https://git.kernel.org/stable/c/913421f9f7fd8324dcc41753d0f28b52e177ef04
	https://git.kernel.org/stable/c/aebfdfe39b9327a3077d0df8db3beb3160c9bdd0

Impacted products

Vendor

Product

Version

►

Linux

Version: a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b
Version: a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b
Version: a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b
Version: a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b
Version: a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b
Version: a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b

Linux

Version: 4.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52652",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-17T15:06:43.734795Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-17T15:06:52.376Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.213Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a62b9f3d7bbfac874cc0c638bc1776dcf1f8ec06"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6632a54ac8057cc0b0d789c6f73883e871bcd25c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a039690d323221eb5865f1f31db3ec264e7a14b6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e8025439ef8e16029dc313d78a351ef192469b7b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/913421f9f7fd8324dcc41753d0f28b52e177ef04"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/aebfdfe39b9327a3077d0df8db3beb3160c9bdd0"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/ntb/core.c",
            "drivers/pci/endpoint/functions/pci-epf-vntb.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a62b9f3d7bbfac874cc0c638bc1776dcf1f8ec06",
              "status": "affected",
              "version": "a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b",
              "versionType": "git"
            },
            {
              "lessThan": "6632a54ac8057cc0b0d789c6f73883e871bcd25c",
              "status": "affected",
              "version": "a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b",
              "versionType": "git"
            },
            {
              "lessThan": "a039690d323221eb5865f1f31db3ec264e7a14b6",
              "status": "affected",
              "version": "a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b",
              "versionType": "git"
            },
            {
              "lessThan": "e8025439ef8e16029dc313d78a351ef192469b7b",
              "status": "affected",
              "version": "a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b",
              "versionType": "git"
            },
            {
              "lessThan": "913421f9f7fd8324dcc41753d0f28b52e177ef04",
              "status": "affected",
              "version": "a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b",
              "versionType": "git"
            },
            {
              "lessThan": "aebfdfe39b9327a3077d0df8db3beb3160c9bdd0",
              "status": "affected",
              "version": "a1bd3baeb2f18b2b3d0f98ce5fdaa725149b950b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/ntb/core.c",
            "drivers/pci/endpoint/functions/pci-epf-vntb.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.2"
            },
            {
              "lessThan": "4.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nNTB: fix possible name leak in ntb_register_device()\n\nIf device_register() fails in ntb_register_device(), the device name\nallocated by dev_set_name() should be freed. As per the comment in\ndevice_register(), callers should use put_device() to give up the\nreference in the error path. So fix this by calling put_device() in the\nerror path so that the name can be freed in kobject_cleanup().\n\nAs a result of this, put_device() in the error path of\nntb_register_device() is removed and the actual error is returned.\n\n[mani: reworded commit message]"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:40:53.901Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a62b9f3d7bbfac874cc0c638bc1776dcf1f8ec06"
        },
        {
          "url": "https://git.kernel.org/stable/c/6632a54ac8057cc0b0d789c6f73883e871bcd25c"
        },
        {
          "url": "https://git.kernel.org/stable/c/a039690d323221eb5865f1f31db3ec264e7a14b6"
        },
        {
          "url": "https://git.kernel.org/stable/c/e8025439ef8e16029dc313d78a351ef192469b7b"
        },
        {
          "url": "https://git.kernel.org/stable/c/913421f9f7fd8324dcc41753d0f28b52e177ef04"
        },
        {
          "url": "https://git.kernel.org/stable/c/aebfdfe39b9327a3077d0df8db3beb3160c9bdd0"
        }
      ],
      "title": "NTB: fix possible name leak in ntb_register_device()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52652",
    "datePublished": "2024-05-01T13:03:58.575Z",
    "dateReserved": "2024-03-06T09:52:12.098Z",
    "dateUpdated": "2025-05-04T07:40:53.901Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26897 (GCVE-0-2024-26897)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 12:55

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete The ath9k_wmi_event_tasklet() used in ath9k_htc assumes that all the data structures have been fully initialised by the time it runs. However, because of the order in which things are initialised, this is not guaranteed to be the case, because the device is exposed to the USB subsystem before the ath9k driver initialisation is completed. We already committed a partial fix for this in commit: 8b3046abc99e ("ath9k_htc: fix NULL pointer dereference at ath9k_htc_tx_get_packet()") However, that commit only aborted the WMI_TXSTATUS_EVENTID command in the event tasklet, pairing it with an "initialisation complete" bit in the TX struct. It seems syzbot managed to trigger the race for one of the other commands as well, so let's just move the existing synchronisation bit to cover the whole tasklet (setting it at the end of ath9k_htc_probe_device() instead of inside ath9k_tx_init()).

References

►

URL

Tags

	https://git.kernel.org/stable/c/1bc5461a21c56a36e2a7d81e152b90ce019a3905
	https://git.kernel.org/stable/c/f8ff4b4df71e87f609be0cc37d92e918107f9b90
	https://git.kernel.org/stable/c/74d0639261dd795dce958d1b14815bdcbb48a715
	https://git.kernel.org/stable/c/a015fbf698c8957aa5fbeefc5c59dd2cf3107298
	https://git.kernel.org/stable/c/ac90e22e735bac44f74b5161fb096fbeb0ff8bc2
	https://git.kernel.org/stable/c/4afa0246656d5680c8a4c3fb37ba6570c4ab819b
	https://git.kernel.org/stable/c/24355fcb0d4cbcb6ddda262596558e8cfba70f11

Impacted products

Vendor

Product

Version

►

Linux

Version: 78c8397132dd4735ac6a7b5a651302f0b9f264ad
Version: 735aefae7b68025cd04c482a940c0f6fc6797a63
Version: 8b3046abc99eefe11438090bcc4ec3a3994b55d0
Version: 8b3046abc99eefe11438090bcc4ec3a3994b55d0
Version: 8b3046abc99eefe11438090bcc4ec3a3994b55d0
Version: 8b3046abc99eefe11438090bcc4ec3a3994b55d0
Version: 8b3046abc99eefe11438090bcc4ec3a3994b55d0
Version: 7bbc1a50a7963f14048f0e54b0b73159f86d4ea3

Linux

Version: 5.17

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.691Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1bc5461a21c56a36e2a7d81e152b90ce019a3905"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f8ff4b4df71e87f609be0cc37d92e918107f9b90"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/74d0639261dd795dce958d1b14815bdcbb48a715"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a015fbf698c8957aa5fbeefc5c59dd2cf3107298"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ac90e22e735bac44f74b5161fb096fbeb0ff8bc2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4afa0246656d5680c8a4c3fb37ba6570c4ab819b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/24355fcb0d4cbcb6ddda262596558e8cfba70f11"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26897",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:48:09.627095Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:23.543Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/ath/ath9k/htc.h",
            "drivers/net/wireless/ath/ath9k/htc_drv_init.c",
            "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c",
            "drivers/net/wireless/ath/ath9k/wmi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "1bc5461a21c56a36e2a7d81e152b90ce019a3905",
              "status": "affected",
              "version": "78c8397132dd4735ac6a7b5a651302f0b9f264ad",
              "versionType": "git"
            },
            {
              "lessThan": "f8ff4b4df71e87f609be0cc37d92e918107f9b90",
              "status": "affected",
              "version": "735aefae7b68025cd04c482a940c0f6fc6797a63",
              "versionType": "git"
            },
            {
              "lessThan": "74d0639261dd795dce958d1b14815bdcbb48a715",
              "status": "affected",
              "version": "8b3046abc99eefe11438090bcc4ec3a3994b55d0",
              "versionType": "git"
            },
            {
              "lessThan": "a015fbf698c8957aa5fbeefc5c59dd2cf3107298",
              "status": "affected",
              "version": "8b3046abc99eefe11438090bcc4ec3a3994b55d0",
              "versionType": "git"
            },
            {
              "lessThan": "ac90e22e735bac44f74b5161fb096fbeb0ff8bc2",
              "status": "affected",
              "version": "8b3046abc99eefe11438090bcc4ec3a3994b55d0",
              "versionType": "git"
            },
            {
              "lessThan": "4afa0246656d5680c8a4c3fb37ba6570c4ab819b",
              "status": "affected",
              "version": "8b3046abc99eefe11438090bcc4ec3a3994b55d0",
              "versionType": "git"
            },
            {
              "lessThan": "24355fcb0d4cbcb6ddda262596558e8cfba70f11",
              "status": "affected",
              "version": "8b3046abc99eefe11438090bcc4ec3a3994b55d0",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "7bbc1a50a7963f14048f0e54b0b73159f86d4ea3",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/ath/ath9k/htc.h",
            "drivers/net/wireless/ath/ath9k/htc_drv_init.c",
            "drivers/net/wireless/ath/ath9k/htc_drv_txrx.c",
            "drivers/net/wireless/ath/ath9k/wmi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.17"
            },
            {
              "lessThan": "5.17",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "5.10.136",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.15.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.16.3",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete\n\nThe ath9k_wmi_event_tasklet() used in ath9k_htc assumes that all the data\nstructures have been fully initialised by the time it runs. However, because of\nthe order in which things are initialised, this is not guaranteed to be the\ncase, because the device is exposed to the USB subsystem before the ath9k driver\ninitialisation is completed.\n\nWe already committed a partial fix for this in commit:\n8b3046abc99e (\"ath9k_htc: fix NULL pointer dereference at ath9k_htc_tx_get_packet()\")\n\nHowever, that commit only aborted the WMI_TXSTATUS_EVENTID command in the event\ntasklet, pairing it with an \"initialisation complete\" bit in the TX struct. It\nseems syzbot managed to trigger the race for one of the other commands as well,\nso let\u0027s just move the existing synchronisation bit to cover the whole\ntasklet (setting it at the end of ath9k_htc_probe_device() instead of inside\nath9k_tx_init())."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:55:07.571Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/1bc5461a21c56a36e2a7d81e152b90ce019a3905"
        },
        {
          "url": "https://git.kernel.org/stable/c/f8ff4b4df71e87f609be0cc37d92e918107f9b90"
        },
        {
          "url": "https://git.kernel.org/stable/c/74d0639261dd795dce958d1b14815bdcbb48a715"
        },
        {
          "url": "https://git.kernel.org/stable/c/a015fbf698c8957aa5fbeefc5c59dd2cf3107298"
        },
        {
          "url": "https://git.kernel.org/stable/c/ac90e22e735bac44f74b5161fb096fbeb0ff8bc2"
        },
        {
          "url": "https://git.kernel.org/stable/c/4afa0246656d5680c8a4c3fb37ba6570c4ab819b"
        },
        {
          "url": "https://git.kernel.org/stable/c/24355fcb0d4cbcb6ddda262596558e8cfba70f11"
        }
      ],
      "title": "wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26897",
    "datePublished": "2024-04-17T10:27:47.842Z",
    "dateReserved": "2024-02-19T14:20:24.186Z",
    "dateUpdated": "2025-05-04T12:55:07.571Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48687 (GCVE-0-2022-48687)

Vulnerability from cvelistv5

Published

2024-05-03 14:59

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix out-of-bounds read when setting HMAC data. The SRv6 layer allows defining HMAC data that can later be used to sign IPv6 Segment Routing Headers. This configuration is realised via netlink through four attributes: SEG6_ATTR_HMACKEYID, SEG6_ATTR_SECRET, SEG6_ATTR_SECRETLEN and SEG6_ATTR_ALGID. Because the SECRETLEN attribute is decoupled from the actual length of the SECRET attribute, it is possible to provide invalid combinations (e.g., secret = "", secretlen = 64). This case is not checked in the code and with an appropriately crafted netlink message, an out-of-bounds read of up to 64 bytes (max secret length) can occur past the skb end pointer and into skb_shared_info: Breakpoint 1, seg6_genl_sethmac (skb=<optimized out>, info=<optimized out>) at net/ipv6/seg6.c:208 208 memcpy(hinfo->secret, secret, slen); (gdb) bt #0 seg6_genl_sethmac (skb=<optimized out>, info=<optimized out>) at net/ipv6/seg6.c:208 #1 0xffffffff81e012e9 in genl_family_rcv_msg_doit (skb=skb@entry=0xffff88800b1f9f00, nlh=nlh@entry=0xffff88800b1b7600, extack=extack@entry=0xffffc90000ba7af0, ops=ops@entry=0xffffc90000ba7a80, hdrlen=4, net=0xffffffff84237580 <init_net>, family=<optimized out>, family=<optimized out>) at net/netlink/genetlink.c:731 #2 0xffffffff81e01435 in genl_family_rcv_msg (extack=0xffffc90000ba7af0, nlh=0xffff88800b1b7600, skb=0xffff88800b1f9f00, family=0xffffffff82fef6c0 <seg6_genl_family>) at net/netlink/genetlink.c:775 #3 genl_rcv_msg (skb=0xffff88800b1f9f00, nlh=0xffff88800b1b7600, extack=0xffffc90000ba7af0) at net/netlink/genetlink.c:792 #4 0xffffffff81dfffc3 in netlink_rcv_skb (skb=skb@entry=0xffff88800b1f9f00, cb=cb@entry=0xffffffff81e01350 <genl_rcv_msg>) at net/netlink/af_netlink.c:2501 #5 0xffffffff81e00919 in genl_rcv (skb=0xffff88800b1f9f00) at net/netlink/genetlink.c:803 #6 0xffffffff81dff6ae in netlink_unicast_kernel (ssk=0xffff888010eec800, skb=0xffff88800b1f9f00, sk=0xffff888004aed000) at net/netlink/af_netlink.c:1319 #7 netlink_unicast (ssk=ssk@entry=0xffff888010eec800, skb=skb@entry=0xffff88800b1f9f00, portid=portid@entry=0, nonblock=<optimized out>) at net/netlink/af_netlink.c:1345 #8 0xffffffff81dff9a4 in netlink_sendmsg (sock=<optimized out>, msg=0xffffc90000ba7e48, len=<optimized out>) at net/netlink/af_netlink.c:1921 ... (gdb) p/x ((struct sk_buff *)0xffff88800b1f9f00)->head + ((struct sk_buff *)0xffff88800b1f9f00)->end $1 = 0xffff88800b1b76c0 (gdb) p/x secret $2 = 0xffff88800b1b76c0 (gdb) p slen $3 = 64 '@' The OOB data can then be read back from userspace by dumping HMAC state. This commit fixes this by ensuring SECRETLEN cannot exceed the actual length of SECRET.

References

►

URL

Tags

	https://git.kernel.org/stable/c/dc9dbd65c803af1607484fed5da50d41dc8dd864
	https://git.kernel.org/stable/c/f684c16971ed5e77dfa25a9ad25b5297e1f58eab
	https://git.kernel.org/stable/c/3df71e11a4773d775c3633c44319f7acdb89011c
	https://git.kernel.org/stable/c/076f2479fc5a15c4a970ca3b5e57d42ba09a31fa
	https://git.kernel.org/stable/c/55195563ec29f80f984237b743de0e2b6ba4d093
	https://git.kernel.org/stable/c/56ad3f475482bca55b0ae544031333018eb145b3
	https://git.kernel.org/stable/c/84a53580c5d2138c7361c7c3eea5b31827e63b35

Impacted products

Vendor

Product

Version

►

Linux

Version: 4f4853dc1c9c1994f6f756eabdcc25374ff271d9
Version: 4f4853dc1c9c1994f6f756eabdcc25374ff271d9
Version: 4f4853dc1c9c1994f6f756eabdcc25374ff271d9
Version: 4f4853dc1c9c1994f6f756eabdcc25374ff271d9
Version: 4f4853dc1c9c1994f6f756eabdcc25374ff271d9
Version: 4f4853dc1c9c1994f6f756eabdcc25374ff271d9
Version: 4f4853dc1c9c1994f6f756eabdcc25374ff271d9

Linux

Version: 4.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48687",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T20:39:43.146783Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T15:44:49.267Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.722Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dc9dbd65c803af1607484fed5da50d41dc8dd864"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f684c16971ed5e77dfa25a9ad25b5297e1f58eab"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3df71e11a4773d775c3633c44319f7acdb89011c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/076f2479fc5a15c4a970ca3b5e57d42ba09a31fa"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/55195563ec29f80f984237b743de0e2b6ba4d093"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/56ad3f475482bca55b0ae544031333018eb145b3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/84a53580c5d2138c7361c7c3eea5b31827e63b35"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/ipv6/seg6.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "dc9dbd65c803af1607484fed5da50d41dc8dd864",
              "status": "affected",
              "version": "4f4853dc1c9c1994f6f756eabdcc25374ff271d9",
              "versionType": "git"
            },
            {
              "lessThan": "f684c16971ed5e77dfa25a9ad25b5297e1f58eab",
              "status": "affected",
              "version": "4f4853dc1c9c1994f6f756eabdcc25374ff271d9",
              "versionType": "git"
            },
            {
              "lessThan": "3df71e11a4773d775c3633c44319f7acdb89011c",
              "status": "affected",
              "version": "4f4853dc1c9c1994f6f756eabdcc25374ff271d9",
              "versionType": "git"
            },
            {
              "lessThan": "076f2479fc5a15c4a970ca3b5e57d42ba09a31fa",
              "status": "affected",
              "version": "4f4853dc1c9c1994f6f756eabdcc25374ff271d9",
              "versionType": "git"
            },
            {
              "lessThan": "55195563ec29f80f984237b743de0e2b6ba4d093",
              "status": "affected",
              "version": "4f4853dc1c9c1994f6f756eabdcc25374ff271d9",
              "versionType": "git"
            },
            {
              "lessThan": "56ad3f475482bca55b0ae544031333018eb145b3",
              "status": "affected",
              "version": "4f4853dc1c9c1994f6f756eabdcc25374ff271d9",
              "versionType": "git"
            },
            {
              "lessThan": "84a53580c5d2138c7361c7c3eea5b31827e63b35",
              "status": "affected",
              "version": "4f4853dc1c9c1994f6f756eabdcc25374ff271d9",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/ipv6/seg6.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.10"
            },
            {
              "lessThan": "4.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.258",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.293",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.258",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "4.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nipv6: sr: fix out-of-bounds read when setting HMAC data.\n\nThe SRv6 layer allows defining HMAC data that can later be used to sign IPv6\nSegment Routing Headers. This configuration is realised via netlink through\nfour attributes: SEG6_ATTR_HMACKEYID, SEG6_ATTR_SECRET, SEG6_ATTR_SECRETLEN and\nSEG6_ATTR_ALGID. Because the SECRETLEN attribute is decoupled from the actual\nlength of the SECRET attribute, it is possible to provide invalid combinations\n(e.g., secret = \"\", secretlen = 64). This case is not checked in the code and\nwith an appropriately crafted netlink message, an out-of-bounds read of up\nto 64 bytes (max secret length) can occur past the skb end pointer and into\nskb_shared_info:\n\nBreakpoint 1, seg6_genl_sethmac (skb=\u003coptimized out\u003e, info=\u003coptimized out\u003e) at net/ipv6/seg6.c:208\n208\t\tmemcpy(hinfo-\u003esecret, secret, slen);\n(gdb) bt\n #0  seg6_genl_sethmac (skb=\u003coptimized out\u003e, info=\u003coptimized out\u003e) at net/ipv6/seg6.c:208\n #1  0xffffffff81e012e9 in genl_family_rcv_msg_doit (skb=skb@entry=0xffff88800b1f9f00, nlh=nlh@entry=0xffff88800b1b7600,\n    extack=extack@entry=0xffffc90000ba7af0, ops=ops@entry=0xffffc90000ba7a80, hdrlen=4, net=0xffffffff84237580 \u003cinit_net\u003e, family=\u003coptimized out\u003e,\n    family=\u003coptimized out\u003e) at net/netlink/genetlink.c:731\n #2  0xffffffff81e01435 in genl_family_rcv_msg (extack=0xffffc90000ba7af0, nlh=0xffff88800b1b7600, skb=0xffff88800b1f9f00,\n    family=0xffffffff82fef6c0 \u003cseg6_genl_family\u003e) at net/netlink/genetlink.c:775\n #3  genl_rcv_msg (skb=0xffff88800b1f9f00, nlh=0xffff88800b1b7600, extack=0xffffc90000ba7af0) at net/netlink/genetlink.c:792\n #4  0xffffffff81dfffc3 in netlink_rcv_skb (skb=skb@entry=0xffff88800b1f9f00, cb=cb@entry=0xffffffff81e01350 \u003cgenl_rcv_msg\u003e)\n    at net/netlink/af_netlink.c:2501\n #5  0xffffffff81e00919 in genl_rcv (skb=0xffff88800b1f9f00) at net/netlink/genetlink.c:803\n #6  0xffffffff81dff6ae in netlink_unicast_kernel (ssk=0xffff888010eec800, skb=0xffff88800b1f9f00, sk=0xffff888004aed000)\n    at net/netlink/af_netlink.c:1319\n #7  netlink_unicast (ssk=ssk@entry=0xffff888010eec800, skb=skb@entry=0xffff88800b1f9f00, portid=portid@entry=0, nonblock=\u003coptimized out\u003e)\n    at net/netlink/af_netlink.c:1345\n #8  0xffffffff81dff9a4 in netlink_sendmsg (sock=\u003coptimized out\u003e, msg=0xffffc90000ba7e48, len=\u003coptimized out\u003e) at net/netlink/af_netlink.c:1921\n...\n(gdb) p/x ((struct sk_buff *)0xffff88800b1f9f00)-\u003ehead + ((struct sk_buff *)0xffff88800b1f9f00)-\u003eend\n$1 = 0xffff88800b1b76c0\n(gdb) p/x secret\n$2 = 0xffff88800b1b76c0\n(gdb) p slen\n$3 = 64 \u0027@\u0027\n\nThe OOB data can then be read back from userspace by dumping HMAC state. This\ncommit fixes this by ensuring SECRETLEN cannot exceed the actual length of\nSECRET."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:05.103Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/dc9dbd65c803af1607484fed5da50d41dc8dd864"
        },
        {
          "url": "https://git.kernel.org/stable/c/f684c16971ed5e77dfa25a9ad25b5297e1f58eab"
        },
        {
          "url": "https://git.kernel.org/stable/c/3df71e11a4773d775c3633c44319f7acdb89011c"
        },
        {
          "url": "https://git.kernel.org/stable/c/076f2479fc5a15c4a970ca3b5e57d42ba09a31fa"
        },
        {
          "url": "https://git.kernel.org/stable/c/55195563ec29f80f984237b743de0e2b6ba4d093"
        },
        {
          "url": "https://git.kernel.org/stable/c/56ad3f475482bca55b0ae544031333018eb145b3"
        },
        {
          "url": "https://git.kernel.org/stable/c/84a53580c5d2138c7361c7c3eea5b31827e63b35"
        }
      ],
      "title": "ipv6: sr: fix out-of-bounds read when setting HMAC data.",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48687",
    "datePublished": "2024-05-03T14:59:32.099Z",
    "dateReserved": "2024-05-03T14:55:07.144Z",
    "dateUpdated": "2025-05-04T08:21:05.103Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48653 (GCVE-0-2022-48653)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ice: Don't double unplug aux on peer initiated reset In the IDC callback that is accessed when the aux drivers request a reset, the function to unplug the aux devices is called. This function is also called in the ice_prepare_for_reset function. This double call is causing a "scheduling while atomic" BUG. [ 662.676430] ice 0000:4c:00.0 rocep76s0: cqp opcode = 0x1 maj_err_code = 0xffff min_err_code = 0x8003 [ 662.676609] ice 0000:4c:00.0 rocep76s0: [Modify QP Cmd Error][op_code=8] status=-29 waiting=1 completion_err=1 maj=0xffff min=0x8003 [ 662.815006] ice 0000:4c:00.0 rocep76s0: ICE OICR event notification: oicr = 0x10000003 [ 662.815014] ice 0000:4c:00.0 rocep76s0: critical PE Error, GLPE_CRITERR=0x00011424 [ 662.815017] ice 0000:4c:00.0 rocep76s0: Requesting a reset [ 662.815475] BUG: scheduling while atomic: swapper/37/0/0x00010002 [ 662.815475] BUG: scheduling while atomic: swapper/37/0/0x00010002 [ 662.815477] Modules linked in: rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs rfkill 8021q garp mrp stp llc vfat fat rpcrdma intel_rapl_msr intel_rapl_common sunrpc i10nm_edac rdma_ucm nfit ib_srpt libnvdimm ib_isert iscsi_target_mod x86_pkg_temp_thermal intel_powerclamp coretemp target_core_mod snd_hda_intel ib_iser snd_intel_dspcfg libiscsi snd_intel_sdw_acpi scsi_transport_iscsi kvm_intel iTCO_wdt rdma_cm snd_hda_codec kvm iw_cm ipmi_ssif iTCO_vendor_support snd_hda_core irqbypass crct10dif_pclmul crc32_pclmul ghash_clmulni_intel snd_hwdep snd_seq snd_seq_device rapl snd_pcm snd_timer isst_if_mbox_pci pcspkr isst_if_mmio irdma intel_uncore idxd acpi_ipmi joydev isst_if_common snd mei_me idxd_bus ipmi_si soundcore i2c_i801 mei ipmi_devintf i2c_smbus i2c_ismt ipmi_msghandler acpi_power_meter acpi_pad rv(OE) ib_uverbs ib_cm ib_core xfs libcrc32c ast i2c_algo_bit drm_vram_helper drm_kms_helper syscopyarea sysfillrect sysimgblt fb_sys_fops drm_ttm_helpe r ttm [ 662.815546] nvme nvme_core ice drm crc32c_intel i40e t10_pi wmi pinctrl_emmitsburg dm_mirror dm_region_hash dm_log dm_mod fuse [ 662.815557] Preemption disabled at: [ 662.815558] [<0000000000000000>] 0x0 [ 662.815563] CPU: 37 PID: 0 Comm: swapper/37 Kdump: loaded Tainted: G S OE 5.17.1 #2 [ 662.815566] Hardware name: Intel Corporation D50DNP/D50DNP, BIOS SE5C6301.86B.6624.D18.2111021741 11/02/2021 [ 662.815568] Call Trace: [ 662.815572] <IRQ> [ 662.815574] dump_stack_lvl+0x33/0x42 [ 662.815581] __schedule_bug.cold.147+0x7d/0x8a [ 662.815588] __schedule+0x798/0x990 [ 662.815595] schedule+0x44/0xc0 [ 662.815597] schedule_preempt_disabled+0x14/0x20 [ 662.815600] __mutex_lock.isra.11+0x46c/0x490 [ 662.815603] ? __ibdev_printk+0x76/0xc0 [ib_core] [ 662.815633] device_del+0x37/0x3d0 [ 662.815639] ice_unplug_aux_dev+0x1a/0x40 [ice] [ 662.815674] ice_schedule_reset+0x3c/0xd0 [ice] [ 662.815693] irdma_iidc_event_handler.cold.7+0xb6/0xd3 [irdma] [ 662.815712] ? bitmap_find_next_zero_area_off+0x45/0xa0 [ 662.815719] ice_send_event_to_aux+0x54/0x70 [ice] [ 662.815741] ice_misc_intr+0x21d/0x2d0 [ice] [ 662.815756] __handle_irq_event_percpu+0x4c/0x180 [ 662.815762] handle_irq_event_percpu+0xf/0x40 [ 662.815764] handle_irq_event+0x34/0x60 [ 662.815766] handle_edge_irq+0x9a/0x1c0 [ 662.815770] __common_interrupt+0x62/0x100 [ 662.815774] common_interrupt+0xb4/0xd0 [ 662.815779] </IRQ> [ 662.815780] <TASK> [ 662.815780] asm_common_interrupt+0x1e/0x40 [ 662.815785] RIP: 0010:cpuidle_enter_state+0xd6/0x380 [ 662.815789] Code: 49 89 c4 0f 1f 44 00 00 31 ff e8 65 d7 95 ff 45 84 ff 74 12 9c 58 f6 c4 02 0f 85 64 02 00 00 31 ff e8 ae c5 9c ff fb 45 85 f6 <0f> 88 12 01 00 00 49 63 d6 4c 2b 24 24 48 8d 04 52 48 8d 04 82 49 [ 662.815791] RSP: 0018:ff2c2c4f18edbe80 EFLAGS: 00000202 [ 662.815793] RAX: ff280805df140000 RBX: 0000000000000002 RCX: 000000000000001f [ 662.815795] RDX: 0000009a52da2d08 R ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/34447d64b8d28e4d6a73d73f07c879959d68fbfe
	https://git.kernel.org/stable/c/149979e87eb7a365d3d0b259bed79d84ff585a93
	https://git.kernel.org/stable/c/23c619190318376769ad7b61504c2ea0703fb783

Impacted products

Vendor

Product

Version

►

Linux

Version: f9f5301e7e2d4fa2445aab3ec889dac6b34ea63e
Version: f9f5301e7e2d4fa2445aab3ec889dac6b34ea63e
Version: f9f5301e7e2d4fa2445aab3ec889dac6b34ea63e

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.590Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/34447d64b8d28e4d6a73d73f07c879959d68fbfe"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/149979e87eb7a365d3d0b259bed79d84ff585a93"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/23c619190318376769ad7b61504c2ea0703fb783"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48653",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:46:08.050254Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:09.948Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/ice/ice_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "34447d64b8d28e4d6a73d73f07c879959d68fbfe",
              "status": "affected",
              "version": "f9f5301e7e2d4fa2445aab3ec889dac6b34ea63e",
              "versionType": "git"
            },
            {
              "lessThan": "149979e87eb7a365d3d0b259bed79d84ff585a93",
              "status": "affected",
              "version": "f9f5301e7e2d4fa2445aab3ec889dac6b34ea63e",
              "versionType": "git"
            },
            {
              "lessThan": "23c619190318376769ad7b61504c2ea0703fb783",
              "status": "affected",
              "version": "f9f5301e7e2d4fa2445aab3ec889dac6b34ea63e",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/ice/ice_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Don\u0027t double unplug aux on peer initiated reset\n\nIn the IDC callback that is accessed when the aux drivers request a reset,\nthe function to unplug the aux devices is called.  This function is also\ncalled in the ice_prepare_for_reset function. This double call is causing\na \"scheduling while atomic\" BUG.\n\n[  662.676430] ice 0000:4c:00.0 rocep76s0: cqp opcode = 0x1 maj_err_code = 0xffff min_err_code = 0x8003\n\n[  662.676609] ice 0000:4c:00.0 rocep76s0: [Modify QP Cmd Error][op_code=8] status=-29 waiting=1 completion_err=1 maj=0xffff min=0x8003\n\n[  662.815006] ice 0000:4c:00.0 rocep76s0: ICE OICR event notification: oicr = 0x10000003\n\n[  662.815014] ice 0000:4c:00.0 rocep76s0: critical PE Error, GLPE_CRITERR=0x00011424\n\n[  662.815017] ice 0000:4c:00.0 rocep76s0: Requesting a reset\n\n[  662.815475] BUG: scheduling while atomic: swapper/37/0/0x00010002\n\n[  662.815475] BUG: scheduling while atomic: swapper/37/0/0x00010002\n[  662.815477] Modules linked in: rpcsec_gss_krb5 auth_rpcgss nfsv4 dns_resolver nfs lockd grace fscache netfs rfkill 8021q garp mrp stp llc vfat fat rpcrdma intel_rapl_msr intel_rapl_common sunrpc i10nm_edac rdma_ucm nfit ib_srpt libnvdimm ib_isert iscsi_target_mod x86_pkg_temp_thermal intel_powerclamp coretemp target_core_mod snd_hda_intel ib_iser snd_intel_dspcfg libiscsi snd_intel_sdw_acpi scsi_transport_iscsi kvm_intel iTCO_wdt rdma_cm snd_hda_codec kvm iw_cm ipmi_ssif iTCO_vendor_support snd_hda_core irqbypass crct10dif_pclmul crc32_pclmul ghash_clmulni_intel snd_hwdep snd_seq snd_seq_device rapl snd_pcm snd_timer isst_if_mbox_pci pcspkr isst_if_mmio irdma intel_uncore idxd acpi_ipmi joydev isst_if_common snd mei_me idxd_bus ipmi_si soundcore i2c_i801 mei ipmi_devintf i2c_smbus i2c_ismt ipmi_msghandler acpi_power_meter acpi_pad rv(OE) ib_uverbs ib_cm ib_core xfs libcrc32c ast i2c_algo_bit drm_vram_helper drm_kms_helper syscopyarea sysfillrect sysimgblt fb_sys_fops drm_ttm_helpe\n r ttm\n[  662.815546]  nvme nvme_core ice drm crc32c_intel i40e t10_pi wmi pinctrl_emmitsburg dm_mirror dm_region_hash dm_log dm_mod fuse\n[  662.815557] Preemption disabled at:\n[  662.815558] [\u003c0000000000000000\u003e] 0x0\n[  662.815563] CPU: 37 PID: 0 Comm: swapper/37 Kdump: loaded Tainted: G S         OE     5.17.1 #2\n[  662.815566] Hardware name: Intel Corporation D50DNP/D50DNP, BIOS SE5C6301.86B.6624.D18.2111021741 11/02/2021\n[  662.815568] Call Trace:\n[  662.815572]  \u003cIRQ\u003e\n[  662.815574]  dump_stack_lvl+0x33/0x42\n[  662.815581]  __schedule_bug.cold.147+0x7d/0x8a\n[  662.815588]  __schedule+0x798/0x990\n[  662.815595]  schedule+0x44/0xc0\n[  662.815597]  schedule_preempt_disabled+0x14/0x20\n[  662.815600]  __mutex_lock.isra.11+0x46c/0x490\n[  662.815603]  ? __ibdev_printk+0x76/0xc0 [ib_core]\n[  662.815633]  device_del+0x37/0x3d0\n[  662.815639]  ice_unplug_aux_dev+0x1a/0x40 [ice]\n[  662.815674]  ice_schedule_reset+0x3c/0xd0 [ice]\n[  662.815693]  irdma_iidc_event_handler.cold.7+0xb6/0xd3 [irdma]\n[  662.815712]  ? bitmap_find_next_zero_area_off+0x45/0xa0\n[  662.815719]  ice_send_event_to_aux+0x54/0x70 [ice]\n[  662.815741]  ice_misc_intr+0x21d/0x2d0 [ice]\n[  662.815756]  __handle_irq_event_percpu+0x4c/0x180\n[  662.815762]  handle_irq_event_percpu+0xf/0x40\n[  662.815764]  handle_irq_event+0x34/0x60\n[  662.815766]  handle_edge_irq+0x9a/0x1c0\n[  662.815770]  __common_interrupt+0x62/0x100\n[  662.815774]  common_interrupt+0xb4/0xd0\n[  662.815779]  \u003c/IRQ\u003e\n[  662.815780]  \u003cTASK\u003e\n[  662.815780]  asm_common_interrupt+0x1e/0x40\n[  662.815785] RIP: 0010:cpuidle_enter_state+0xd6/0x380\n[  662.815789] Code: 49 89 c4 0f 1f 44 00 00 31 ff e8 65 d7 95 ff 45 84 ff 74 12 9c 58 f6 c4 02 0f 85 64 02 00 00 31 ff e8 ae c5 9c ff fb 45 85 f6 \u003c0f\u003e 88 12 01 00 00 49 63 d6 4c 2b 24 24 48 8d 04 52 48 8d 04 82 49\n[  662.815791] RSP: 0018:ff2c2c4f18edbe80 EFLAGS: 00000202\n[  662.815793] RAX: ff280805df140000 RBX: 0000000000000002 RCX: 000000000000001f\n[  662.815795] RDX: 0000009a52da2d08 R\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:37.929Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/34447d64b8d28e4d6a73d73f07c879959d68fbfe"
        },
        {
          "url": "https://git.kernel.org/stable/c/149979e87eb7a365d3d0b259bed79d84ff585a93"
        },
        {
          "url": "https://git.kernel.org/stable/c/23c619190318376769ad7b61504c2ea0703fb783"
        }
      ],
      "title": "ice: Don\u0027t double unplug aux on peer initiated reset",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48653",
    "datePublished": "2024-04-28T13:00:52.055Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:37.929Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26972 (GCVE-0-2024-26972)

Vulnerability from cvelistv5

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "providerMetadata": {
        "dateUpdated": "2024-12-19T11:17:20.490Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "rejectedReasons": [
        {
          "lang": "en",
          "value": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority."
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26972",
    "datePublished": "2024-05-01T05:20:04.669Z",
    "dateRejected": "2024-12-19T11:17:20.490Z",
    "dateReserved": "2024-02-19T14:20:24.202Z",
    "dateUpdated": "2024-12-19T11:17:20.490Z",
    "state": "REJECTED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47209 (GCVE-0-2021-47209)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Prevent dead task groups from regaining cfs_rq's Kevin is reporting crashes which point to a use-after-free of a cfs_rq in update_blocked_averages(). Initial debugging revealed that we've live cfs_rq's (on_list=1) in an about to be kfree()'d task group in free_fair_sched_group(). However, it was unclear how that can happen. His kernel config happened to lead to a layout of struct sched_entity that put the 'my_q' member directly into the middle of the object which makes it incidentally overlap with SLUB's freelist pointer. That, in combination with SLAB_FREELIST_HARDENED's freelist pointer mangling, leads to a reliable access violation in form of a #GP which made the UAF fail fast. Michal seems to have run into the same issue[1]. He already correctly diagnosed that commit a7b359fc6a37 ("sched/fair: Correctly insert cfs_rq's to list on unthrottle") is causing the preconditions for the UAF to happen by re-adding cfs_rq's also to task groups that have no more running tasks, i.e. also to dead ones. His analysis, however, misses the real root cause and it cannot be seen from the crash backtrace only, as the real offender is tg_unthrottle_up() getting called via sched_cfs_period_timer() via the timer interrupt at an inconvenient time. When unregister_fair_sched_group() unlinks all cfs_rq's from the dying task group, it doesn't protect itself from getting interrupted. If the timer interrupt triggers while we iterate over all CPUs or after unregister_fair_sched_group() has finished but prior to unlinking the task group, sched_cfs_period_timer() will execute and walk the list of task groups, trying to unthrottle cfs_rq's, i.e. re-add them to the dying task group. These will later -- in free_fair_sched_group() -- be kfree()'ed while still being linked, leading to the fireworks Kevin and Michal are seeing. To fix this race, ensure the dying task group gets unlinked first. However, simply switching the order of unregistering and unlinking the task group isn't sufficient, as concurrent RCU walkers might still see it, as can be seen below: CPU1: CPU2: : timer IRQ: : do_sched_cfs_period_timer(): : : : distribute_cfs_runtime(): : rcu_read_lock(); : : : unthrottle_cfs_rq(): sched_offline_group(): : : walk_tg_tree_from(…,tg_unthrottle_up,…): list_del_rcu(&tg->list); : (1) : list_for_each_entry_rcu(child, &parent->children, siblings) : : (2) list_del_rcu(&tg->siblings); : : tg_unthrottle_up(): unregister_fair_sched_group(): struct cfs_rq *cfs_rq = tg->cfs_rq[cpu_of(rq)]; : : list_del_leaf_cfs_rq(tg->cfs_rq[cpu]); : : : : if (!cfs_rq_is_decayed(cfs_rq) || cfs_rq->nr_running) (3) : list_add_leaf_cfs_rq(cfs_rq); : : : : : : : : : ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/512e21c150c1c3ee298852660f3a796e267e62ec
	https://git.kernel.org/stable/c/b027789e5e50494c2325cc70c8642e7fd6059479

Impacted products

Vendor

Product

Version

►

Linux

Version: a7b359fc6a37faaf472125867c8dc5a068c90982
Version: a7b359fc6a37faaf472125867c8dc5a068c90982

Linux

Version: 5.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47209",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-10T19:45:03.652350Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:13:26.586Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.493Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/512e21c150c1c3ee298852660f3a796e267e62ec"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b027789e5e50494c2325cc70c8642e7fd6059479"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/sched/autogroup.c",
            "kernel/sched/core.c",
            "kernel/sched/fair.c",
            "kernel/sched/rt.c",
            "kernel/sched/sched.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "512e21c150c1c3ee298852660f3a796e267e62ec",
              "status": "affected",
              "version": "a7b359fc6a37faaf472125867c8dc5a068c90982",
              "versionType": "git"
            },
            {
              "lessThan": "b027789e5e50494c2325cc70c8642e7fd6059479",
              "status": "affected",
              "version": "a7b359fc6a37faaf472125867c8dc5a068c90982",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/sched/autogroup.c",
            "kernel/sched/core.c",
            "kernel/sched/fair.c",
            "kernel/sched/rt.c",
            "kernel/sched/sched.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.13"
            },
            {
              "lessThan": "5.13",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsched/fair: Prevent dead task groups from regaining cfs_rq\u0027s\n\nKevin is reporting crashes which point to a use-after-free of a cfs_rq\nin update_blocked_averages(). Initial debugging revealed that we\u0027ve\nlive cfs_rq\u0027s (on_list=1) in an about to be kfree()\u0027d task group in\nfree_fair_sched_group(). However, it was unclear how that can happen.\n\nHis kernel config happened to lead to a layout of struct sched_entity\nthat put the \u0027my_q\u0027 member directly into the middle of the object\nwhich makes it incidentally overlap with SLUB\u0027s freelist pointer.\nThat, in combination with SLAB_FREELIST_HARDENED\u0027s freelist pointer\nmangling, leads to a reliable access violation in form of a #GP which\nmade the UAF fail fast.\n\nMichal seems to have run into the same issue[1]. He already correctly\ndiagnosed that commit a7b359fc6a37 (\"sched/fair: Correctly insert\ncfs_rq\u0027s to list on unthrottle\") is causing the preconditions for the\nUAF to happen by re-adding cfs_rq\u0027s also to task groups that have no\nmore running tasks, i.e. also to dead ones. His analysis, however,\nmisses the real root cause and it cannot be seen from the crash\nbacktrace only, as the real offender is tg_unthrottle_up() getting\ncalled via sched_cfs_period_timer() via the timer interrupt at an\ninconvenient time.\n\nWhen unregister_fair_sched_group() unlinks all cfs_rq\u0027s from the dying\ntask group, it doesn\u0027t protect itself from getting interrupted. If the\ntimer interrupt triggers while we iterate over all CPUs or after\nunregister_fair_sched_group() has finished but prior to unlinking the\ntask group, sched_cfs_period_timer() will execute and walk the list of\ntask groups, trying to unthrottle cfs_rq\u0027s, i.e. re-add them to the\ndying task group. These will later -- in free_fair_sched_group() -- be\nkfree()\u0027ed while still being linked, leading to the fireworks Kevin\nand Michal are seeing.\n\nTo fix this race, ensure the dying task group gets unlinked first.\nHowever, simply switching the order of unregistering and unlinking the\ntask group isn\u0027t sufficient, as concurrent RCU walkers might still see\nit, as can be seen below:\n\n    CPU1:                                      CPU2:\n      :                                        timer IRQ:\n      :                                          do_sched_cfs_period_timer():\n      :                                            :\n      :                                            distribute_cfs_runtime():\n      :                                              rcu_read_lock();\n      :                                              :\n      :                                              unthrottle_cfs_rq():\n    sched_offline_group():                             :\n      :                                                walk_tg_tree_from(\u2026,tg_unthrottle_up,\u2026):\n      list_del_rcu(\u0026tg-\u003elist);                           :\n (1)  :                                                  list_for_each_entry_rcu(child, \u0026parent-\u003echildren, siblings)\n      :                                                    :\n (2)  list_del_rcu(\u0026tg-\u003esiblings);                         :\n      :                                                    tg_unthrottle_up():\n      unregister_fair_sched_group():                         struct cfs_rq *cfs_rq = tg-\u003ecfs_rq[cpu_of(rq)];\n        :                                                    :\n        list_del_leaf_cfs_rq(tg-\u003ecfs_rq[cpu]);               :\n        :                                                    :\n        :                                                    if (!cfs_rq_is_decayed(cfs_rq) || cfs_rq-\u003enr_running)\n (3)    :                                                        list_add_leaf_cfs_rq(cfs_rq);\n      :                                                      :\n      :                                                    :\n      :                                                  :\n      :                                                :\n      :                           \n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:25.344Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/512e21c150c1c3ee298852660f3a796e267e62ec"
        },
        {
          "url": "https://git.kernel.org/stable/c/b027789e5e50494c2325cc70c8642e7fd6059479"
        }
      ],
      "title": "sched/fair: Prevent dead task groups from regaining cfs_rq\u0027s",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47209",
    "datePublished": "2024-04-10T19:01:51.363Z",
    "dateReserved": "2024-04-10T18:59:19.526Z",
    "dateUpdated": "2025-05-04T07:06:25.344Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26772 (GCVE-0-2024-26772)

Vulnerability from cvelistv5

Published

2024-04-03 17:00

Modified

2025-05-04 08:56

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() Places the logic for checking if the group's block bitmap is corrupt under the protection of the group lock to avoid allocating blocks from the group with a corrupted block bitmap.

References

►

URL

Tags

	https://git.kernel.org/stable/c/5a6dcc4ad0f7f7fa8e8d127b5526e7c5f2d38a43
	https://git.kernel.org/stable/c/6b92b1bc16d691c95b152c6dbf027ad64315668d
	https://git.kernel.org/stable/c/ffeb72a80a82aba59a6774b0611f792e0ed3b0b7
	https://git.kernel.org/stable/c/8de8305a25bfda607fc13475ebe84b978c96d7ff
	https://git.kernel.org/stable/c/d639102f4cbd4cb65d1225dba3b9265596aab586
	https://git.kernel.org/stable/c/d3bbe77a76bc52e9d4d0a120f1509be36e25c916
	https://git.kernel.org/stable/c/21dbe20589c7f48e9c5d336ce6402bcebfa6d76a
	https://git.kernel.org/stable/c/832698373a25950942c04a512daa652c18a9b513

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26772",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-03T19:16:02.816411Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-01T15:30:43.236Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.428Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5a6dcc4ad0f7f7fa8e8d127b5526e7c5f2d38a43"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6b92b1bc16d691c95b152c6dbf027ad64315668d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ffeb72a80a82aba59a6774b0611f792e0ed3b0b7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8de8305a25bfda607fc13475ebe84b978c96d7ff"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d639102f4cbd4cb65d1225dba3b9265596aab586"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d3bbe77a76bc52e9d4d0a120f1509be36e25c916"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/21dbe20589c7f48e9c5d336ce6402bcebfa6d76a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/832698373a25950942c04a512daa652c18a9b513"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/mballoc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "5a6dcc4ad0f7f7fa8e8d127b5526e7c5f2d38a43",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6b92b1bc16d691c95b152c6dbf027ad64315668d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ffeb72a80a82aba59a6774b0611f792e0ed3b0b7",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "8de8305a25bfda607fc13475ebe84b978c96d7ff",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "d639102f4cbd4cb65d1225dba3b9265596aab586",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "d3bbe77a76bc52e9d4d0a120f1509be36e25c916",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "21dbe20589c7f48e9c5d336ce6402bcebfa6d76a",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "832698373a25950942c04a512daa652c18a9b513",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/mballoc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.308",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.270",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.211",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.308",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.270",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.211",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal()\n\nPlaces the logic for checking if the group\u0027s block bitmap is corrupt under\nthe protection of the group lock to avoid allocating blocks from the group\nwith a corrupted block bitmap."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:56:09.839Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/5a6dcc4ad0f7f7fa8e8d127b5526e7c5f2d38a43"
        },
        {
          "url": "https://git.kernel.org/stable/c/6b92b1bc16d691c95b152c6dbf027ad64315668d"
        },
        {
          "url": "https://git.kernel.org/stable/c/ffeb72a80a82aba59a6774b0611f792e0ed3b0b7"
        },
        {
          "url": "https://git.kernel.org/stable/c/8de8305a25bfda607fc13475ebe84b978c96d7ff"
        },
        {
          "url": "https://git.kernel.org/stable/c/d639102f4cbd4cb65d1225dba3b9265596aab586"
        },
        {
          "url": "https://git.kernel.org/stable/c/d3bbe77a76bc52e9d4d0a120f1509be36e25c916"
        },
        {
          "url": "https://git.kernel.org/stable/c/21dbe20589c7f48e9c5d336ce6402bcebfa6d76a"
        },
        {
          "url": "https://git.kernel.org/stable/c/832698373a25950942c04a512daa652c18a9b513"
        }
      ],
      "title": "ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26772",
    "datePublished": "2024-04-03T17:00:58.733Z",
    "dateReserved": "2024-02-19T14:20:24.176Z",
    "dateUpdated": "2025-05-04T08:56:09.839Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48655 (GCVE-0-2022-48655)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Harden accesses to the reset domains Accessing reset domains descriptors by the index upon the SCMI drivers requests through the SCMI reset operations interface can potentially lead to out-of-bound violations if the SCMI driver misbehave. Add an internal consistency check before any such domains descriptors accesses.

References

►

URL

Tags

	https://git.kernel.org/stable/c/7184491fc515f391afba23d0e9b690caaea72daf
	https://git.kernel.org/stable/c/f2277d9e2a0d092c13bae7ee82d75432bb8b5108
	https://git.kernel.org/stable/c/1f08a1b26cfc53b7715abc46857c6023bb1b87de
	https://git.kernel.org/stable/c/8e65edf0d37698f7a6cb174608d3ec7976baf49e
	https://git.kernel.org/stable/c/e9076ffbcaed5da6c182b144ef9f6e24554af268

Impacted products

Vendor

Product

Version

►

Linux

Version: 95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5
Version: 95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5
Version: 95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5
Version: 95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5
Version: 95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5

Linux

Version: 5.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "7184491fc515",
                "status": "affected",
                "version": "95a15d80aa0d",
                "versionType": "custom"
              },
              {
                "lessThan": "f2277d9e2a0d",
                "status": "affected",
                "version": "95a15d80aa0d",
                "versionType": "custom"
              },
              {
                "lessThan": "1f08a1b26cfc",
                "status": "affected",
                "version": "95a15d80aa0d",
                "versionType": "custom"
              },
              {
                "lessThan": "8e65edf0d376",
                "status": "affected",
                "version": "95a15d80aa0d",
                "versionType": "custom"
              },
              {
                "lessThan": "e9076ffbcaed",
                "status": "affected",
                "version": "95a15d80aa0d",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:5.4:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "affected",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "5.4"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 8.1,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48655",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-05T04:01:14.973732Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-05T13:55:57.618Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-09-12T16:02:54.021Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7184491fc515f391afba23d0e9b690caaea72daf"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f2277d9e2a0d092c13bae7ee82d75432bb8b5108"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1f08a1b26cfc53b7715abc46857c6023bb1b87de"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8e65edf0d37698f7a6cb174608d3ec7976baf49e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e9076ffbcaed5da6c182b144ef9f6e24554af268"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html"
          },
          {
            "url": "https://security.netapp.com/advisory/ntap-20240912-0008/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/firmware/arm_scmi/reset.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "7184491fc515f391afba23d0e9b690caaea72daf",
              "status": "affected",
              "version": "95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5",
              "versionType": "git"
            },
            {
              "lessThan": "f2277d9e2a0d092c13bae7ee82d75432bb8b5108",
              "status": "affected",
              "version": "95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5",
              "versionType": "git"
            },
            {
              "lessThan": "1f08a1b26cfc53b7715abc46857c6023bb1b87de",
              "status": "affected",
              "version": "95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5",
              "versionType": "git"
            },
            {
              "lessThan": "8e65edf0d37698f7a6cb174608d3ec7976baf49e",
              "status": "affected",
              "version": "95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5",
              "versionType": "git"
            },
            {
              "lessThan": "e9076ffbcaed5da6c182b144ef9f6e24554af268",
              "status": "affected",
              "version": "95a15d80aa0de938299acfcbc6aa6f2b16f5d7e5",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/firmware/arm_scmi/reset.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.4"
            },
            {
              "lessThan": "5.4",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.277",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.277",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.218",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Harden accesses to the reset domains\n\nAccessing reset domains descriptors by the index upon the SCMI drivers\nrequests through the SCMI reset operations interface can potentially\nlead to out-of-bound violations if the SCMI driver misbehave.\n\nAdd an internal consistency check before any such domains descriptors\naccesses."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:40.297Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/7184491fc515f391afba23d0e9b690caaea72daf"
        },
        {
          "url": "https://git.kernel.org/stable/c/f2277d9e2a0d092c13bae7ee82d75432bb8b5108"
        },
        {
          "url": "https://git.kernel.org/stable/c/1f08a1b26cfc53b7715abc46857c6023bb1b87de"
        },
        {
          "url": "https://git.kernel.org/stable/c/8e65edf0d37698f7a6cb174608d3ec7976baf49e"
        },
        {
          "url": "https://git.kernel.org/stable/c/e9076ffbcaed5da6c182b144ef9f6e24554af268"
        }
      ],
      "title": "firmware: arm_scmi: Harden accesses to the reset domains",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48655",
    "datePublished": "2024-04-28T13:01:00.822Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:40.297Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47194 (GCVE-0-2021-47194)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: cfg80211: call cfg80211_stop_ap when switch from P2P_GO type If the userspace tools switch from NL80211_IFTYPE_P2P_GO to NL80211_IFTYPE_ADHOC via send_msg(NL80211_CMD_SET_INTERFACE), it does not call the cleanup cfg80211_stop_ap(), this leads to the initialization of in-use data. For example, this path re-init the sdata->assigned_chanctx_list while it is still an element of assigned_vifs list, and makes that linked list corrupt.

References

►

URL

Tags

	https://git.kernel.org/stable/c/8f06bb8c216bcd172394f61e557727e691b4cb24
	https://git.kernel.org/stable/c/0738cdb636c21ab552eaecf905efa4a6070e3ebc
	https://git.kernel.org/stable/c/4e458abbb4a523f1413bfe15c079cf4e24c15b21
	https://git.kernel.org/stable/c/b8a045e2a9b234cfbc06cf36923886164358ddec
	https://git.kernel.org/stable/c/52affc201fc22a1ab9a59ef0ed641a9adfcb8d13
	https://git.kernel.org/stable/c/7b97b5776daa0b39dbdadfea176f9cc0646d4a66
	https://git.kernel.org/stable/c/5a9b671c8d74a3e1b999e7a0c7f366079bcc93dd
	https://git.kernel.org/stable/c/563fbefed46ae4c1f70cffb8eb54c02df480b2c2

Impacted products

Vendor

Product

Version

►

Linux

Version: ac800140c20e7ae51117e71289065bedd4930fc2
Version: ac800140c20e7ae51117e71289065bedd4930fc2
Version: ac800140c20e7ae51117e71289065bedd4930fc2
Version: ac800140c20e7ae51117e71289065bedd4930fc2
Version: ac800140c20e7ae51117e71289065bedd4930fc2
Version: ac800140c20e7ae51117e71289065bedd4930fc2
Version: ac800140c20e7ae51117e71289065bedd4930fc2
Version: ac800140c20e7ae51117e71289065bedd4930fc2

Linux

Version: 3.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47194",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-21T16:05:05.968362Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-21T16:05:16.617Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.292Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8f06bb8c216bcd172394f61e557727e691b4cb24"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0738cdb636c21ab552eaecf905efa4a6070e3ebc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4e458abbb4a523f1413bfe15c079cf4e24c15b21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b8a045e2a9b234cfbc06cf36923886164358ddec"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/52affc201fc22a1ab9a59ef0ed641a9adfcb8d13"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7b97b5776daa0b39dbdadfea176f9cc0646d4a66"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5a9b671c8d74a3e1b999e7a0c7f366079bcc93dd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/563fbefed46ae4c1f70cffb8eb54c02df480b2c2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/wireless/util.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "8f06bb8c216bcd172394f61e557727e691b4cb24",
              "status": "affected",
              "version": "ac800140c20e7ae51117e71289065bedd4930fc2",
              "versionType": "git"
            },
            {
              "lessThan": "0738cdb636c21ab552eaecf905efa4a6070e3ebc",
              "status": "affected",
              "version": "ac800140c20e7ae51117e71289065bedd4930fc2",
              "versionType": "git"
            },
            {
              "lessThan": "4e458abbb4a523f1413bfe15c079cf4e24c15b21",
              "status": "affected",
              "version": "ac800140c20e7ae51117e71289065bedd4930fc2",
              "versionType": "git"
            },
            {
              "lessThan": "b8a045e2a9b234cfbc06cf36923886164358ddec",
              "status": "affected",
              "version": "ac800140c20e7ae51117e71289065bedd4930fc2",
              "versionType": "git"
            },
            {
              "lessThan": "52affc201fc22a1ab9a59ef0ed641a9adfcb8d13",
              "status": "affected",
              "version": "ac800140c20e7ae51117e71289065bedd4930fc2",
              "versionType": "git"
            },
            {
              "lessThan": "7b97b5776daa0b39dbdadfea176f9cc0646d4a66",
              "status": "affected",
              "version": "ac800140c20e7ae51117e71289065bedd4930fc2",
              "versionType": "git"
            },
            {
              "lessThan": "5a9b671c8d74a3e1b999e7a0c7f366079bcc93dd",
              "status": "affected",
              "version": "ac800140c20e7ae51117e71289065bedd4930fc2",
              "versionType": "git"
            },
            {
              "lessThan": "563fbefed46ae4c1f70cffb8eb54c02df480b2c2",
              "status": "affected",
              "version": "ac800140c20e7ae51117e71289065bedd4930fc2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/wireless/util.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.6"
            },
            {
              "lessThan": "3.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.4.*",
              "status": "unaffected",
              "version": "4.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.291",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.256",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.4.293",
                  "versionStartIncluding": "3.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.291",
                  "versionStartIncluding": "3.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.256",
                  "versionStartIncluding": "3.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "versionStartIncluding": "3.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "versionStartIncluding": "3.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "3.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "3.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "3.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncfg80211: call cfg80211_stop_ap when switch from P2P_GO type\n\nIf the userspace tools switch from NL80211_IFTYPE_P2P_GO to\nNL80211_IFTYPE_ADHOC via send_msg(NL80211_CMD_SET_INTERFACE), it\ndoes not call the cleanup cfg80211_stop_ap(), this leads to the\ninitialization of in-use data. For example, this path re-init the\nsdata-\u003eassigned_chanctx_list while it is still an element of\nassigned_vifs list, and makes that linked list corrupt."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:08.612Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/8f06bb8c216bcd172394f61e557727e691b4cb24"
        },
        {
          "url": "https://git.kernel.org/stable/c/0738cdb636c21ab552eaecf905efa4a6070e3ebc"
        },
        {
          "url": "https://git.kernel.org/stable/c/4e458abbb4a523f1413bfe15c079cf4e24c15b21"
        },
        {
          "url": "https://git.kernel.org/stable/c/b8a045e2a9b234cfbc06cf36923886164358ddec"
        },
        {
          "url": "https://git.kernel.org/stable/c/52affc201fc22a1ab9a59ef0ed641a9adfcb8d13"
        },
        {
          "url": "https://git.kernel.org/stable/c/7b97b5776daa0b39dbdadfea176f9cc0646d4a66"
        },
        {
          "url": "https://git.kernel.org/stable/c/5a9b671c8d74a3e1b999e7a0c7f366079bcc93dd"
        },
        {
          "url": "https://git.kernel.org/stable/c/563fbefed46ae4c1f70cffb8eb54c02df480b2c2"
        }
      ],
      "title": "cfg80211: call cfg80211_stop_ap when switch from P2P_GO type",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47194",
    "datePublished": "2024-04-10T18:56:31.361Z",
    "dateReserved": "2024-03-25T09:12:14.114Z",
    "dateUpdated": "2025-05-04T07:06:08.612Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48660 (GCVE-0-2022-48660)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully When running gpio test on nxp-ls1028 platform with below command gpiomon --num-events=3 --rising-edge gpiochip1 25 There will be a warning trace as below: Call trace: free_irq+0x204/0x360 lineevent_free+0x64/0x70 gpio_ioctl+0x598/0x6a0 __arm64_sys_ioctl+0xb4/0x100 invoke_syscall+0x5c/0x130 ...... el0t_64_sync+0x1a0/0x1a4 The reason of this issue is that calling request_threaded_irq() function failed, and then lineevent_free() is invoked to release the resource. Since the lineevent_state::irq was already set, so the subsequent invocation of free_irq() would trigger the above warning call trace. To fix this issue, set the lineevent_state::irq after the IRQ register successfully.

References

►

URL

Tags

	https://git.kernel.org/stable/c/657803b918e097e47d99d1489da83a603c36bcdd
	https://git.kernel.org/stable/c/97da736cd11ae73bdf2f5e21e24446b8349e0168
	https://git.kernel.org/stable/c/b1489043d3b9004dd8d5a0357b08b5f0e6691c43
	https://git.kernel.org/stable/c/69bef19d6b9700e96285f4b4e28691cda3dcd0d1

Impacted products

Vendor

Product

Version

►

Linux

Version: 468242724143a8e732f82f664b1e77432d149618
Version: 468242724143a8e732f82f664b1e77432d149618
Version: 468242724143a8e732f82f664b1e77432d149618
Version: 468242724143a8e732f82f664b1e77432d149618

Linux

Version: 5.9

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48660",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:40:55.841953Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-27T17:53:19.109Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.745Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/657803b918e097e47d99d1489da83a603c36bcdd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/97da736cd11ae73bdf2f5e21e24446b8349e0168"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b1489043d3b9004dd8d5a0357b08b5f0e6691c43"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/69bef19d6b9700e96285f4b4e28691cda3dcd0d1"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpio/gpiolib-cdev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "657803b918e097e47d99d1489da83a603c36bcdd",
              "status": "affected",
              "version": "468242724143a8e732f82f664b1e77432d149618",
              "versionType": "git"
            },
            {
              "lessThan": "97da736cd11ae73bdf2f5e21e24446b8349e0168",
              "status": "affected",
              "version": "468242724143a8e732f82f664b1e77432d149618",
              "versionType": "git"
            },
            {
              "lessThan": "b1489043d3b9004dd8d5a0357b08b5f0e6691c43",
              "status": "affected",
              "version": "468242724143a8e732f82f664b1e77432d149618",
              "versionType": "git"
            },
            {
              "lessThan": "69bef19d6b9700e96285f4b4e28691cda3dcd0d1",
              "status": "affected",
              "version": "468242724143a8e732f82f664b1e77432d149618",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpio/gpiolib-cdev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.9"
            },
            {
              "lessThan": "5.9",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.9",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpiolib: cdev: Set lineevent_state::irq after IRQ register successfully\n\nWhen running gpio test on nxp-ls1028 platform with below command\ngpiomon --num-events=3 --rising-edge gpiochip1 25\nThere will be a warning trace as below:\nCall trace:\nfree_irq+0x204/0x360\nlineevent_free+0x64/0x70\ngpio_ioctl+0x598/0x6a0\n__arm64_sys_ioctl+0xb4/0x100\ninvoke_syscall+0x5c/0x130\n......\nel0t_64_sync+0x1a0/0x1a4\nThe reason of this issue is that calling request_threaded_irq()\nfunction failed, and then lineevent_free() is invoked to release\nthe resource. Since the lineevent_state::irq was already set, so\nthe subsequent invocation of free_irq() would trigger the above\nwarning call trace. To fix this issue, set the lineevent_state::irq\nafter the IRQ register successfully."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:46.019Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/657803b918e097e47d99d1489da83a603c36bcdd"
        },
        {
          "url": "https://git.kernel.org/stable/c/97da736cd11ae73bdf2f5e21e24446b8349e0168"
        },
        {
          "url": "https://git.kernel.org/stable/c/b1489043d3b9004dd8d5a0357b08b5f0e6691c43"
        },
        {
          "url": "https://git.kernel.org/stable/c/69bef19d6b9700e96285f4b4e28691cda3dcd0d1"
        }
      ],
      "title": "gpiolib: cdev: Set lineevent_state::irq after IRQ register successfully",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48660",
    "datePublished": "2024-04-28T13:01:22.239Z",
    "dateReserved": "2024-02-25T13:44:28.318Z",
    "dateUpdated": "2025-05-04T08:20:46.019Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26855 (GCVE-0-2024-26855)

Vulnerability from cvelistv5

Published

2024-04-17 10:17

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink() The function ice_bridge_setlink() may encounter a NULL pointer dereference if nlmsg_find_attr() returns NULL and br_spec is dereferenced subsequently in nla_for_each_nested(). To address this issue, add a check to ensure that br_spec is not NULL before proceeding with the nested attribute iteration.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d9fefc51133107e59d192d773be86c1150cfeebb
	https://git.kernel.org/stable/c/37fe99016b12d32100ce670216816dba6c48b309
	https://git.kernel.org/stable/c/8d95465d9a424200485792858c5b3be54658ce19
	https://git.kernel.org/stable/c/afdd29726a6de4ba27cd15590661424c888dc596
	https://git.kernel.org/stable/c/1a770927dc1d642b22417c3e668c871689fc58b3
	https://git.kernel.org/stable/c/0e296067ae0d74a10b4933601f9aa9f0ec8f157f
	https://git.kernel.org/stable/c/06e456a05d669ca30b224b8ed962421770c1496c

Impacted products

Vendor

Product

Version

►

Linux

Version: b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2
Version: b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2
Version: b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2
Version: b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2
Version: b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2
Version: b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2
Version: b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2

Linux

Version: 4.20

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26855",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-23T14:02:40.817976Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:48:40.362Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.668Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d9fefc51133107e59d192d773be86c1150cfeebb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/37fe99016b12d32100ce670216816dba6c48b309"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8d95465d9a424200485792858c5b3be54658ce19"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/afdd29726a6de4ba27cd15590661424c888dc596"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1a770927dc1d642b22417c3e668c871689fc58b3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0e296067ae0d74a10b4933601f9aa9f0ec8f157f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/06e456a05d669ca30b224b8ed962421770c1496c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/ice/ice_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d9fefc51133107e59d192d773be86c1150cfeebb",
              "status": "affected",
              "version": "b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2",
              "versionType": "git"
            },
            {
              "lessThan": "37fe99016b12d32100ce670216816dba6c48b309",
              "status": "affected",
              "version": "b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2",
              "versionType": "git"
            },
            {
              "lessThan": "8d95465d9a424200485792858c5b3be54658ce19",
              "status": "affected",
              "version": "b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2",
              "versionType": "git"
            },
            {
              "lessThan": "afdd29726a6de4ba27cd15590661424c888dc596",
              "status": "affected",
              "version": "b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2",
              "versionType": "git"
            },
            {
              "lessThan": "1a770927dc1d642b22417c3e668c871689fc58b3",
              "status": "affected",
              "version": "b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2",
              "versionType": "git"
            },
            {
              "lessThan": "0e296067ae0d74a10b4933601f9aa9f0ec8f157f",
              "status": "affected",
              "version": "b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2",
              "versionType": "git"
            },
            {
              "lessThan": "06e456a05d669ca30b224b8ed962421770c1496c",
              "status": "affected",
              "version": "b1edc14a3fbfe0154a2aecb8bb9775c3012cb6e2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/ice/ice_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.20"
            },
            {
              "lessThan": "4.20",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.272",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.152",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.22",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.10",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.272",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.213",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.152",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.82",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.22",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.10",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()\n\nThe function ice_bridge_setlink() may encounter a NULL pointer dereference\nif nlmsg_find_attr() returns NULL and br_spec is dereferenced subsequently\nin nla_for_each_nested(). To address this issue, add a check to ensure that\nbr_spec is not NULL before proceeding with the nested attribute iteration."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:03.566Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d9fefc51133107e59d192d773be86c1150cfeebb"
        },
        {
          "url": "https://git.kernel.org/stable/c/37fe99016b12d32100ce670216816dba6c48b309"
        },
        {
          "url": "https://git.kernel.org/stable/c/8d95465d9a424200485792858c5b3be54658ce19"
        },
        {
          "url": "https://git.kernel.org/stable/c/afdd29726a6de4ba27cd15590661424c888dc596"
        },
        {
          "url": "https://git.kernel.org/stable/c/1a770927dc1d642b22417c3e668c871689fc58b3"
        },
        {
          "url": "https://git.kernel.org/stable/c/0e296067ae0d74a10b4933601f9aa9f0ec8f157f"
        },
        {
          "url": "https://git.kernel.org/stable/c/06e456a05d669ca30b224b8ed962421770c1496c"
        }
      ],
      "title": "net: ice: Fix potential NULL pointer dereference in ice_bridge_setlink()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26855",
    "datePublished": "2024-04-17T10:17:17.858Z",
    "dateReserved": "2024-02-19T14:20:24.183Z",
    "dateUpdated": "2025-05-04T08:58:03.566Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48662 (GCVE-0-2022-48662)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Really move i915_gem_context.link under ref protection i915_perf assumes that it can use the i915_gem_context reference to protect its i915->gem.contexts.list iteration. However, this requires that we do not remove the context from the list until after we drop the final reference and release the struct. If, as currently, we remove the context from the list during context_close(), the link.next pointer may be poisoned while we are holding the context reference and cause a GPF: [ 4070.573157] i915 0000:00:02.0: [drm:i915_perf_open_ioctl [i915]] filtering on ctx_id=0x1fffff ctx_id_mask=0x1fffff [ 4070.574881] general protection fault, probably for non-canonical address 0xdead000000000100: 0000 [#1] PREEMPT SMP [ 4070.574897] CPU: 1 PID: 284392 Comm: amd_performance Tainted: G E 5.17.9 #180 [ 4070.574903] Hardware name: Intel Corporation NUC7i5BNK/NUC7i5BNB, BIOS BNKBL357.86A.0052.2017.0918.1346 09/18/2017 [ 4070.574907] RIP: 0010:oa_configure_all_contexts.isra.0+0x222/0x350 [i915] [ 4070.574982] Code: 08 e8 32 6e 10 e1 4d 8b 6d 50 b8 ff ff ff ff 49 83 ed 50 f0 41 0f c1 04 24 83 f8 01 0f 84 e3 00 00 00 85 c0 0f 8e fa 00 00 00 <49> 8b 45 50 48 8d 70 b0 49 8d 45 50 48 39 44 24 10 0f 85 34 fe ff [ 4070.574990] RSP: 0018:ffffc90002077b78 EFLAGS: 00010202 [ 4070.574995] RAX: 0000000000000002 RBX: 0000000000000002 RCX: 0000000000000000 [ 4070.575000] RDX: 0000000000000001 RSI: ffffc90002077b20 RDI: ffff88810ddc7c68 [ 4070.575004] RBP: 0000000000000001 R08: ffff888103242648 R09: fffffffffffffffc [ 4070.575008] R10: ffffffff82c50bc0 R11: 0000000000025c80 R12: ffff888101bf1860 [ 4070.575012] R13: dead0000000000b0 R14: ffffc90002077c04 R15: ffff88810be5cabc [ 4070.575016] FS: 00007f1ed50c0780(0000) GS:ffff88885ec80000(0000) knlGS:0000000000000000 [ 4070.575021] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 4070.575025] CR2: 00007f1ed5590280 CR3: 000000010ef6f005 CR4: 00000000003706e0 [ 4070.575029] Call Trace: [ 4070.575033] <TASK> [ 4070.575037] lrc_configure_all_contexts+0x13e/0x150 [i915] [ 4070.575103] gen8_enable_metric_set+0x4d/0x90 [i915] [ 4070.575164] i915_perf_open_ioctl+0xbc0/0x1500 [i915] [ 4070.575224] ? asm_common_interrupt+0x1e/0x40 [ 4070.575232] ? i915_oa_init_reg_state+0x110/0x110 [i915] [ 4070.575290] drm_ioctl_kernel+0x85/0x110 [ 4070.575296] ? update_load_avg+0x5f/0x5e0 [ 4070.575302] drm_ioctl+0x1d3/0x370 [ 4070.575307] ? i915_oa_init_reg_state+0x110/0x110 [i915] [ 4070.575382] ? gen8_gt_irq_handler+0x46/0x130 [i915] [ 4070.575445] __x64_sys_ioctl+0x3c4/0x8d0 [ 4070.575451] ? __do_softirq+0xaa/0x1d2 [ 4070.575456] do_syscall_64+0x35/0x80 [ 4070.575461] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 4070.575467] RIP: 0033:0x7f1ed5c10397 [ 4070.575471] Code: 3c 1c e8 1c ff ff ff 85 c0 79 87 49 c7 c4 ff ff ff ff 5b 5d 4c 89 e0 41 5c c3 66 0f 1f 84 00 00 00 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a9 da 0d 00 f7 d8 64 89 01 48 [ 4070.575478] RSP: 002b:00007ffd65c8d7a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 4070.575484] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007f1ed5c10397 [ 4070.575488] RDX: 00007ffd65c8d7c0 RSI: 0000000040106476 RDI: 0000000000000006 [ 4070.575492] RBP: 00005620972f9c60 R08: 000000000000000a R09: 0000000000000005 [ 4070.575496] R10: 000000000000000d R11: 0000000000000246 R12: 000000000000000a [ 4070.575500] R13: 000000000000000d R14: 0000000000000000 R15: 00007ffd65c8d7c0 [ 4070.575505] </TASK> [ 4070.575507] Modules linked in: nls_ascii(E) nls_cp437(E) vfat(E) fat(E) i915(E) x86_pkg_temp_thermal(E) intel_powerclamp(E) crct10dif_pclmul(E) crc32_pclmul(E) crc32c_intel(E) aesni_intel(E) crypto_simd(E) intel_gtt(E) cryptd(E) ttm(E) rapl(E) intel_cstate(E) drm_kms_helper(E) cfbfillrect(E) syscopyarea(E) cfbimgblt(E) intel_uncore(E) sysfillrect(E) mei_me(E) sysimgblt(E) i2c_i801(E) fb_sys_fops(E) mei(E) intel_pch_thermal(E) i2c_smbus ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/713fa3e4591f65f804bdc88e8648e219fabc9ee1
	https://git.kernel.org/stable/c/f799e0568d6c153368b177e0bbbde7dcc4ce7f1d
	https://git.kernel.org/stable/c/d119888b09bd567e07c6b93a07f175df88857e02

Impacted products

Vendor

Product

Version

►

Linux

Version: f8246cf4d9a9025d26c609bb2195e7c0a9ce5c40
Version: f8246cf4d9a9025d26c609bb2195e7c0a9ce5c40
Version: f8246cf4d9a9025d26c609bb2195e7c0a9ce5c40

Linux

Version: 5.12

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.808Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/713fa3e4591f65f804bdc88e8648e219fabc9ee1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f799e0568d6c153368b177e0bbbde7dcc4ce7f1d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d119888b09bd567e07c6b93a07f175df88857e02"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "713fa3e4591f",
                "status": "affected",
                "version": "f8246cf4d9a9",
                "versionType": "custom"
              },
              {
                "lessThan": "f799e0568d6c",
                "status": "affected",
                "version": "f8246cf4d9a9",
                "versionType": "custom"
              },
              {
                "lessThan": "d119888b09bd",
                "status": "affected",
                "version": "f8246cf4d9a9",
                "versionType": "custom"
              },
              {
                "status": "affected",
                "version": "5.12"
              },
              {
                "lessThan": "5.12",
                "status": "unaffected",
                "version": "0",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "5.16",
                "status": "unaffected",
                "version": "5.15.72",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "5.20",
                "status": "unaffected",
                "version": "5.19.12",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "*",
                "status": "unaffected",
                "version": "6.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48662",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-30T19:37:36.638845Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-119",
                "description": "CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-08T15:29:08.245Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/i915/gem/i915_gem_context.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "713fa3e4591f65f804bdc88e8648e219fabc9ee1",
              "status": "affected",
              "version": "f8246cf4d9a9025d26c609bb2195e7c0a9ce5c40",
              "versionType": "git"
            },
            {
              "lessThan": "f799e0568d6c153368b177e0bbbde7dcc4ce7f1d",
              "status": "affected",
              "version": "f8246cf4d9a9025d26c609bb2195e7c0a9ce5c40",
              "versionType": "git"
            },
            {
              "lessThan": "d119888b09bd567e07c6b93a07f175df88857e02",
              "status": "affected",
              "version": "f8246cf4d9a9025d26c609bb2195e7c0a9ce5c40",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/i915/gem/i915_gem_context.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.12"
            },
            {
              "lessThan": "5.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.72",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.72",
                  "versionStartIncluding": "5.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/gem: Really move i915_gem_context.link under ref protection\n\ni915_perf assumes that it can use the i915_gem_context reference to\nprotect its i915-\u003egem.contexts.list iteration. However, this requires\nthat we do not remove the context from the list until after we drop the\nfinal reference and release the struct. If, as currently, we remove the\ncontext from the list during context_close(), the link.next pointer may\nbe poisoned while we are holding the context reference and cause a GPF:\n\n[ 4070.573157] i915 0000:00:02.0: [drm:i915_perf_open_ioctl [i915]] filtering on ctx_id=0x1fffff ctx_id_mask=0x1fffff\n[ 4070.574881] general protection fault, probably for non-canonical address 0xdead000000000100: 0000 [#1] PREEMPT SMP\n[ 4070.574897] CPU: 1 PID: 284392 Comm: amd_performance Tainted: G            E     5.17.9 #180\n[ 4070.574903] Hardware name: Intel Corporation NUC7i5BNK/NUC7i5BNB, BIOS BNKBL357.86A.0052.2017.0918.1346 09/18/2017\n[ 4070.574907] RIP: 0010:oa_configure_all_contexts.isra.0+0x222/0x350 [i915]\n[ 4070.574982] Code: 08 e8 32 6e 10 e1 4d 8b 6d 50 b8 ff ff ff ff 49 83 ed 50 f0 41 0f c1 04 24 83 f8 01 0f 84 e3 00 00 00 85 c0 0f 8e fa 00 00 00 \u003c49\u003e 8b 45 50 48 8d 70 b0 49 8d 45 50 48 39 44 24 10 0f 85 34 fe ff\n[ 4070.574990] RSP: 0018:ffffc90002077b78 EFLAGS: 00010202\n[ 4070.574995] RAX: 0000000000000002 RBX: 0000000000000002 RCX: 0000000000000000\n[ 4070.575000] RDX: 0000000000000001 RSI: ffffc90002077b20 RDI: ffff88810ddc7c68\n[ 4070.575004] RBP: 0000000000000001 R08: ffff888103242648 R09: fffffffffffffffc\n[ 4070.575008] R10: ffffffff82c50bc0 R11: 0000000000025c80 R12: ffff888101bf1860\n[ 4070.575012] R13: dead0000000000b0 R14: ffffc90002077c04 R15: ffff88810be5cabc\n[ 4070.575016] FS:  00007f1ed50c0780(0000) GS:ffff88885ec80000(0000) knlGS:0000000000000000\n[ 4070.575021] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[ 4070.575025] CR2: 00007f1ed5590280 CR3: 000000010ef6f005 CR4: 00000000003706e0\n[ 4070.575029] Call Trace:\n[ 4070.575033]  \u003cTASK\u003e\n[ 4070.575037]  lrc_configure_all_contexts+0x13e/0x150 [i915]\n[ 4070.575103]  gen8_enable_metric_set+0x4d/0x90 [i915]\n[ 4070.575164]  i915_perf_open_ioctl+0xbc0/0x1500 [i915]\n[ 4070.575224]  ? asm_common_interrupt+0x1e/0x40\n[ 4070.575232]  ? i915_oa_init_reg_state+0x110/0x110 [i915]\n[ 4070.575290]  drm_ioctl_kernel+0x85/0x110\n[ 4070.575296]  ? update_load_avg+0x5f/0x5e0\n[ 4070.575302]  drm_ioctl+0x1d3/0x370\n[ 4070.575307]  ? i915_oa_init_reg_state+0x110/0x110 [i915]\n[ 4070.575382]  ? gen8_gt_irq_handler+0x46/0x130 [i915]\n[ 4070.575445]  __x64_sys_ioctl+0x3c4/0x8d0\n[ 4070.575451]  ? __do_softirq+0xaa/0x1d2\n[ 4070.575456]  do_syscall_64+0x35/0x80\n[ 4070.575461]  entry_SYSCALL_64_after_hwframe+0x44/0xae\n[ 4070.575467] RIP: 0033:0x7f1ed5c10397\n[ 4070.575471] Code: 3c 1c e8 1c ff ff ff 85 c0 79 87 49 c7 c4 ff ff ff ff 5b 5d 4c 89 e0 41 5c c3 66 0f 1f 84 00 00 00 00 00 b8 10 00 00 00 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 8b 0d a9 da 0d 00 f7 d8 64 89 01 48\n[ 4070.575478] RSP: 002b:00007ffd65c8d7a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n[ 4070.575484] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00007f1ed5c10397\n[ 4070.575488] RDX: 00007ffd65c8d7c0 RSI: 0000000040106476 RDI: 0000000000000006\n[ 4070.575492] RBP: 00005620972f9c60 R08: 000000000000000a R09: 0000000000000005\n[ 4070.575496] R10: 000000000000000d R11: 0000000000000246 R12: 000000000000000a\n[ 4070.575500] R13: 000000000000000d R14: 0000000000000000 R15: 00007ffd65c8d7c0\n[ 4070.575505]  \u003c/TASK\u003e\n[ 4070.575507] Modules linked in: nls_ascii(E) nls_cp437(E) vfat(E) fat(E) i915(E) x86_pkg_temp_thermal(E) intel_powerclamp(E) crct10dif_pclmul(E) crc32_pclmul(E) crc32c_intel(E) aesni_intel(E) crypto_simd(E) intel_gtt(E) cryptd(E) ttm(E) rapl(E) intel_cstate(E) drm_kms_helper(E) cfbfillrect(E) syscopyarea(E) cfbimgblt(E) intel_uncore(E) sysfillrect(E) mei_me(E) sysimgblt(E) i2c_i801(E) fb_sys_fops(E) mei(E) intel_pch_thermal(E) i2c_smbus\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:48.153Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/713fa3e4591f65f804bdc88e8648e219fabc9ee1"
        },
        {
          "url": "https://git.kernel.org/stable/c/f799e0568d6c153368b177e0bbbde7dcc4ce7f1d"
        },
        {
          "url": "https://git.kernel.org/stable/c/d119888b09bd567e07c6b93a07f175df88857e02"
        }
      ],
      "title": "drm/i915/gem: Really move i915_gem_context.link under ref protection",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48662",
    "datePublished": "2024-04-28T13:01:31.373Z",
    "dateReserved": "2024-02-25T13:44:28.319Z",
    "dateUpdated": "2025-05-04T08:20:48.153Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47185 (GCVE-0-2021-47185)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:05

Severity ?

4.4 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc When running ltp testcase(ltp/testcases/kernel/pty/pty04.c) with arm64, there is a soft lockup, which look like this one: Workqueue: events_unbound flush_to_ldisc Call trace: dump_backtrace+0x0/0x1ec show_stack+0x24/0x30 dump_stack+0xd0/0x128 panic+0x15c/0x374 watchdog_timer_fn+0x2b8/0x304 __run_hrtimer+0x88/0x2c0 __hrtimer_run_queues+0xa4/0x120 hrtimer_interrupt+0xfc/0x270 arch_timer_handler_phys+0x40/0x50 handle_percpu_devid_irq+0x94/0x220 __handle_domain_irq+0x88/0xf0 gic_handle_irq+0x84/0xfc el1_irq+0xc8/0x180 slip_unesc+0x80/0x214 [slip] tty_ldisc_receive_buf+0x64/0x80 tty_port_default_receive_buf+0x50/0x90 flush_to_ldisc+0xbc/0x110 process_one_work+0x1d4/0x4b0 worker_thread+0x180/0x430 kthread+0x11c/0x120 In the testcase pty04, The first process call the write syscall to send data to the pty master. At the same time, the workqueue will do the flush_to_ldisc to pop data in a loop until there is no more data left. When the sender and workqueue running in different core, the sender sends data fastly in full time which will result in workqueue doing work in loop for a long time and occuring softlockup in flush_to_ldisc with kernel configured without preempt. So I add need_resched check and cond_resched in the flush_to_ldisc loop to avoid it.

References

►

URL

Tags

	https://git.kernel.org/stable/c/0380f643f3a7a61b0845cdc738959c2ad5735d61
	https://git.kernel.org/stable/c/b1ffc16ec05ae40d82b6e373322d62e9d6b54fbc
	https://git.kernel.org/stable/c/4c1623651a0936ee197859824cdae6ebbd04d3ed
	https://git.kernel.org/stable/c/4f300f47dbcf9c3d4b2ea76c8554c8f360400725
	https://git.kernel.org/stable/c/d491c84df5c469dd9621863b6a770b3428137063
	https://git.kernel.org/stable/c/77e9fed33056f2a88eba9dd4d2d5412f0c7d1f41
	https://git.kernel.org/stable/c/5c34486f04700f1ba04907231dce0cc2705c2d7d
	https://git.kernel.org/stable/c/3968ddcf05fb4b9409cd1859feb06a5b0550a1c1

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 4.4,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "HIGH",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2021-47185",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-15T14:53:32.237242Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-01T14:14:51.983Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.394Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0380f643f3a7a61b0845cdc738959c2ad5735d61"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b1ffc16ec05ae40d82b6e373322d62e9d6b54fbc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4c1623651a0936ee197859824cdae6ebbd04d3ed"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4f300f47dbcf9c3d4b2ea76c8554c8f360400725"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d491c84df5c469dd9621863b6a770b3428137063"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/77e9fed33056f2a88eba9dd4d2d5412f0c7d1f41"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5c34486f04700f1ba04907231dce0cc2705c2d7d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3968ddcf05fb4b9409cd1859feb06a5b0550a1c1"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/tty/tty_buffer.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "0380f643f3a7a61b0845cdc738959c2ad5735d61",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b1ffc16ec05ae40d82b6e373322d62e9d6b54fbc",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4c1623651a0936ee197859824cdae6ebbd04d3ed",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4f300f47dbcf9c3d4b2ea76c8554c8f360400725",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "d491c84df5c469dd9621863b6a770b3428137063",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "77e9fed33056f2a88eba9dd4d2d5412f0c7d1f41",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5c34486f04700f1ba04907231dce0cc2705c2d7d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "3968ddcf05fb4b9409cd1859feb06a5b0550a1c1",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/tty/tty_buffer.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.4.*",
              "status": "unaffected",
              "version": "4.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.291",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.256",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.4.293",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.291",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.256",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntty: tty_buffer: Fix the softlockup issue in flush_to_ldisc\n\nWhen running ltp testcase(ltp/testcases/kernel/pty/pty04.c) with arm64, there is a soft lockup,\nwhich look like this one:\n\n  Workqueue: events_unbound flush_to_ldisc\n  Call trace:\n   dump_backtrace+0x0/0x1ec\n   show_stack+0x24/0x30\n   dump_stack+0xd0/0x128\n   panic+0x15c/0x374\n   watchdog_timer_fn+0x2b8/0x304\n   __run_hrtimer+0x88/0x2c0\n   __hrtimer_run_queues+0xa4/0x120\n   hrtimer_interrupt+0xfc/0x270\n   arch_timer_handler_phys+0x40/0x50\n   handle_percpu_devid_irq+0x94/0x220\n   __handle_domain_irq+0x88/0xf0\n   gic_handle_irq+0x84/0xfc\n   el1_irq+0xc8/0x180\n   slip_unesc+0x80/0x214 [slip]\n   tty_ldisc_receive_buf+0x64/0x80\n   tty_port_default_receive_buf+0x50/0x90\n   flush_to_ldisc+0xbc/0x110\n   process_one_work+0x1d4/0x4b0\n   worker_thread+0x180/0x430\n   kthread+0x11c/0x120\n\nIn the testcase pty04, The first process call the write syscall to send\ndata to the pty master. At the same time, the workqueue will do the\nflush_to_ldisc to pop data in a loop until there is no more data left.\nWhen the sender and workqueue running in different core, the sender sends\ndata fastly in full time which will result in workqueue doing work in loop\nfor a long time and occuring softlockup in flush_to_ldisc with kernel\nconfigured without preempt. So I add need_resched check and cond_resched\nin the flush_to_ldisc loop to avoid it."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:05:56.677Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/0380f643f3a7a61b0845cdc738959c2ad5735d61"
        },
        {
          "url": "https://git.kernel.org/stable/c/b1ffc16ec05ae40d82b6e373322d62e9d6b54fbc"
        },
        {
          "url": "https://git.kernel.org/stable/c/4c1623651a0936ee197859824cdae6ebbd04d3ed"
        },
        {
          "url": "https://git.kernel.org/stable/c/4f300f47dbcf9c3d4b2ea76c8554c8f360400725"
        },
        {
          "url": "https://git.kernel.org/stable/c/d491c84df5c469dd9621863b6a770b3428137063"
        },
        {
          "url": "https://git.kernel.org/stable/c/77e9fed33056f2a88eba9dd4d2d5412f0c7d1f41"
        },
        {
          "url": "https://git.kernel.org/stable/c/5c34486f04700f1ba04907231dce0cc2705c2d7d"
        },
        {
          "url": "https://git.kernel.org/stable/c/3968ddcf05fb4b9409cd1859feb06a5b0550a1c1"
        }
      ],
      "title": "tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47185",
    "datePublished": "2024-04-10T18:56:25.671Z",
    "dateReserved": "2024-03-25T09:12:14.113Z",
    "dateUpdated": "2025-05-04T07:05:56.677Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26878 (GCVE-0-2024-26878)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: quota: Fix potential NULL pointer dereference Below race may cause NULL pointer dereference P1 P2 dquot_free_inode quota_off drop_dquot_ref remove_dquot_ref dquots = i_dquot(inode) dquots = i_dquot(inode) srcu_read_lock dquots[cnt]) != NULL (1) dquots[type] = NULL (2) spin_lock(&dquots[cnt]->dq_dqb_lock) (3) .... If dquot_free_inode(or other routines) checks inode's quota pointers (1) before quota_off sets it to NULL(2) and use it (3) after that, NULL pointer dereference will be triggered. So let's fix it by using a temporary pointer to avoid this issue.

References

►

URL

Tags

	https://git.kernel.org/stable/c/8514899c1a4edf802f03c408db901063aa3f05a1
	https://git.kernel.org/stable/c/49669f8e7eb053f91d239df7b1bfb4500255a9d0
	https://git.kernel.org/stable/c/61380537aa6dd32d8a723d98b8f1bd1b11d8fee0
	https://git.kernel.org/stable/c/1ca72a3de915f87232c9a4cb9bebbd3af8ed3e25
	https://git.kernel.org/stable/c/7f9e833fc0f9b47be503af012eb5903086939754
	https://git.kernel.org/stable/c/40a673b4b07efd6f74ff3ab60f38b26aa91ee5d5
	https://git.kernel.org/stable/c/f2649d98aa9ca8623149b3cb8df00c944f5655c7
	https://git.kernel.org/stable/c/6afc9f4434fa8063aa768c2bf5bf98583aee0877
	https://git.kernel.org/stable/c/d0aa72604fbd80c8aabb46eda00535ed35570f1f

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:04.234Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8514899c1a4edf802f03c408db901063aa3f05a1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/49669f8e7eb053f91d239df7b1bfb4500255a9d0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/61380537aa6dd32d8a723d98b8f1bd1b11d8fee0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1ca72a3de915f87232c9a4cb9bebbd3af8ed3e25"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7f9e833fc0f9b47be503af012eb5903086939754"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/40a673b4b07efd6f74ff3ab60f38b26aa91ee5d5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f2649d98aa9ca8623149b3cb8df00c944f5655c7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6afc9f4434fa8063aa768c2bf5bf98583aee0877"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d0aa72604fbd80c8aabb46eda00535ed35570f1f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26878",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:48:25.754517Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:25.716Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/quota/dquot.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "8514899c1a4edf802f03c408db901063aa3f05a1",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "49669f8e7eb053f91d239df7b1bfb4500255a9d0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "61380537aa6dd32d8a723d98b8f1bd1b11d8fee0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "1ca72a3de915f87232c9a4cb9bebbd3af8ed3e25",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "7f9e833fc0f9b47be503af012eb5903086939754",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "40a673b4b07efd6f74ff3ab60f38b26aa91ee5d5",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f2649d98aa9ca8623149b3cb8df00c944f5655c7",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6afc9f4434fa8063aa768c2bf5bf98583aee0877",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "d0aa72604fbd80c8aabb46eda00535ed35570f1f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/quota/dquot.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nquota: Fix potential NULL pointer dereference\n\nBelow race may cause NULL pointer dereference\n\nP1\t\t\t\t\tP2\ndquot_free_inode\t\t\tquota_off\n\t\t\t\t\t  drop_dquot_ref\n\t\t\t\t\t   remove_dquot_ref\n\t\t\t\t\t   dquots = i_dquot(inode)\n  dquots = i_dquot(inode)\n  srcu_read_lock\n  dquots[cnt]) != NULL (1)\n\t\t\t\t\t     dquots[type] = NULL (2)\n  spin_lock(\u0026dquots[cnt]-\u003edq_dqb_lock) (3)\n   ....\n\nIf dquot_free_inode(or other routines) checks inode\u0027s quota pointers (1)\nbefore quota_off sets it to NULL(2) and use it (3) after that, NULL pointer\ndereference will be triggered.\n\nSo let\u0027s fix it by using a temporary pointer to avoid this issue."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:41.311Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/8514899c1a4edf802f03c408db901063aa3f05a1"
        },
        {
          "url": "https://git.kernel.org/stable/c/49669f8e7eb053f91d239df7b1bfb4500255a9d0"
        },
        {
          "url": "https://git.kernel.org/stable/c/61380537aa6dd32d8a723d98b8f1bd1b11d8fee0"
        },
        {
          "url": "https://git.kernel.org/stable/c/1ca72a3de915f87232c9a4cb9bebbd3af8ed3e25"
        },
        {
          "url": "https://git.kernel.org/stable/c/7f9e833fc0f9b47be503af012eb5903086939754"
        },
        {
          "url": "https://git.kernel.org/stable/c/40a673b4b07efd6f74ff3ab60f38b26aa91ee5d5"
        },
        {
          "url": "https://git.kernel.org/stable/c/f2649d98aa9ca8623149b3cb8df00c944f5655c7"
        },
        {
          "url": "https://git.kernel.org/stable/c/6afc9f4434fa8063aa768c2bf5bf98583aee0877"
        },
        {
          "url": "https://git.kernel.org/stable/c/d0aa72604fbd80c8aabb46eda00535ed35570f1f"
        }
      ],
      "title": "quota: Fix potential NULL pointer dereference",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26878",
    "datePublished": "2024-04-17T10:27:35.838Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:41.311Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26791 (GCVE-0-2024-26791)

Vulnerability from cvelistv5

Published

2024-04-04 08:20

Modified

2025-05-04 08:56

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: btrfs: dev-replace: properly validate device names There's a syzbot report that device name buffers passed to device replace are not properly checked for string termination which could lead to a read out of bounds in getname_kernel(). Add a helper that validates both source and target device name buffers. For devid as the source initialize the buffer to empty string in case something tries to read it later. This was originally analyzed and fixed in a different way by Edward Adam Davis (see links).

References

►

URL

Tags

	https://git.kernel.org/stable/c/11d7a2e429c02d51e2dc90713823ea8b8d3d3a84
	https://git.kernel.org/stable/c/c6652e20d7d783d060fe5f987eac7b5cabe31311
	https://git.kernel.org/stable/c/2886fe308a83968dde252302884a1e63351cf16d
	https://git.kernel.org/stable/c/ab2d68655d0f04650bef09fee948ff80597c5fb9
	https://git.kernel.org/stable/c/f590040ce2b712177306b03c2a63b16f7d48d3c8
	https://git.kernel.org/stable/c/b1690ced4d2d8b28868811fb81cd33eee5aefee1
	https://git.kernel.org/stable/c/343eecb4ff49a7b1cc1dfe86958a805cf2341cfb
	https://git.kernel.org/stable/c/9845664b9ee47ce7ee7ea93caf47d39a9d4552c4

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.455Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/11d7a2e429c02d51e2dc90713823ea8b8d3d3a84"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c6652e20d7d783d060fe5f987eac7b5cabe31311"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2886fe308a83968dde252302884a1e63351cf16d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ab2d68655d0f04650bef09fee948ff80597c5fb9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f590040ce2b712177306b03c2a63b16f7d48d3c8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b1690ced4d2d8b28868811fb81cd33eee5aefee1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/343eecb4ff49a7b1cc1dfe86958a805cf2341cfb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9845664b9ee47ce7ee7ea93caf47d39a9d4552c4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26791",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:50:58.820208Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:50.626Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/btrfs/dev-replace.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "11d7a2e429c02d51e2dc90713823ea8b8d3d3a84",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "c6652e20d7d783d060fe5f987eac7b5cabe31311",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "2886fe308a83968dde252302884a1e63351cf16d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ab2d68655d0f04650bef09fee948ff80597c5fb9",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f590040ce2b712177306b03c2a63b16f7d48d3c8",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b1690ced4d2d8b28868811fb81cd33eee5aefee1",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "343eecb4ff49a7b1cc1dfe86958a805cf2341cfb",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "9845664b9ee47ce7ee7ea93caf47d39a9d4552c4",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/btrfs/dev-replace.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.309",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.271",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.212",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.151",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.81",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.21",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.309",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.271",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.212",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.151",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.81",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: dev-replace: properly validate device names\n\nThere\u0027s a syzbot report that device name buffers passed to device\nreplace are not properly checked for string termination which could lead\nto a read out of bounds in getname_kernel().\n\nAdd a helper that validates both source and target device name buffers.\nFor devid as the source initialize the buffer to empty string in case\nsomething tries to read it later.\n\nThis was originally analyzed and fixed in a different way by Edward Adam\nDavis (see links)."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:56:37.164Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/11d7a2e429c02d51e2dc90713823ea8b8d3d3a84"
        },
        {
          "url": "https://git.kernel.org/stable/c/c6652e20d7d783d060fe5f987eac7b5cabe31311"
        },
        {
          "url": "https://git.kernel.org/stable/c/2886fe308a83968dde252302884a1e63351cf16d"
        },
        {
          "url": "https://git.kernel.org/stable/c/ab2d68655d0f04650bef09fee948ff80597c5fb9"
        },
        {
          "url": "https://git.kernel.org/stable/c/f590040ce2b712177306b03c2a63b16f7d48d3c8"
        },
        {
          "url": "https://git.kernel.org/stable/c/b1690ced4d2d8b28868811fb81cd33eee5aefee1"
        },
        {
          "url": "https://git.kernel.org/stable/c/343eecb4ff49a7b1cc1dfe86958a805cf2341cfb"
        },
        {
          "url": "https://git.kernel.org/stable/c/9845664b9ee47ce7ee7ea93caf47d39a9d4552c4"
        }
      ],
      "title": "btrfs: dev-replace: properly validate device names",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26791",
    "datePublished": "2024-04-04T08:20:22.374Z",
    "dateReserved": "2024-02-19T14:20:24.178Z",
    "dateUpdated": "2025-05-04T08:56:37.164Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26833 (GCVE-0-2024-26833)

Vulnerability from cvelistv5

Published

2024-04-17 10:10

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix memory leak in dm_sw_fini() After destroying dmub_srv, the memory associated with it is not freed, causing a memory leak: unreferenced object 0xffff896302b45800 (size 1024): comm "(udev-worker)", pid 222, jiffies 4294894636 hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace (crc 6265fd77): [<ffffffff993495ed>] kmalloc_trace+0x29d/0x340 [<ffffffffc0ea4a94>] dm_dmub_sw_init+0xb4/0x450 [amdgpu] [<ffffffffc0ea4e55>] dm_sw_init+0x15/0x2b0 [amdgpu] [<ffffffffc0ba8557>] amdgpu_device_init+0x1417/0x24e0 [amdgpu] [<ffffffffc0bab285>] amdgpu_driver_load_kms+0x15/0x190 [amdgpu] [<ffffffffc0ba09c7>] amdgpu_pci_probe+0x187/0x4e0 [amdgpu] [<ffffffff9968fd1e>] local_pci_probe+0x3e/0x90 [<ffffffff996918a3>] pci_device_probe+0xc3/0x230 [<ffffffff99805872>] really_probe+0xe2/0x480 [<ffffffff99805c98>] __driver_probe_device+0x78/0x160 [<ffffffff99805daf>] driver_probe_device+0x1f/0x90 [<ffffffff9980601e>] __driver_attach+0xce/0x1c0 [<ffffffff99803170>] bus_for_each_dev+0x70/0xc0 [<ffffffff99804822>] bus_add_driver+0x112/0x210 [<ffffffff99807245>] driver_register+0x55/0x100 [<ffffffff990012d1>] do_one_initcall+0x41/0x300 Fix this by freeing dmub_srv after destroying it.

References

►

URL

Tags

	https://git.kernel.org/stable/c/b49b022f7dfce85eb77d0d987008fde5c01d7857
	https://git.kernel.org/stable/c/33f649f1b1cea39ed360e6c12bba4fac83118e6e
	https://git.kernel.org/stable/c/58168005337eabef345a872be3f87d0215ff3b30
	https://git.kernel.org/stable/c/10c6b90e975358c17856a578419dc449887899c2
	https://git.kernel.org/stable/c/541e79265ea7e339a7c4a462feafe9f8f996e04b
	https://git.kernel.org/stable/c/bae67893578d608e35691dcdfa90c4957debf1d3

Impacted products

Vendor

Product

Version

►

Linux

Version: 743b9786b14ae0d7d13b3782dccad158e577e9bb
Version: 743b9786b14ae0d7d13b3782dccad158e577e9bb
Version: 743b9786b14ae0d7d13b3782dccad158e577e9bb
Version: 743b9786b14ae0d7d13b3782dccad158e577e9bb
Version: 743b9786b14ae0d7d13b3782dccad158e577e9bb
Version: 743b9786b14ae0d7d13b3782dccad158e577e9bb

Linux

Version: 5.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26833",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T19:24:28.460328Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T19:24:36.114Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.539Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b49b022f7dfce85eb77d0d987008fde5c01d7857"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/33f649f1b1cea39ed360e6c12bba4fac83118e6e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/58168005337eabef345a872be3f87d0215ff3b30"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/10c6b90e975358c17856a578419dc449887899c2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/541e79265ea7e339a7c4a462feafe9f8f996e04b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bae67893578d608e35691dcdfa90c4957debf1d3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b49b022f7dfce85eb77d0d987008fde5c01d7857",
              "status": "affected",
              "version": "743b9786b14ae0d7d13b3782dccad158e577e9bb",
              "versionType": "git"
            },
            {
              "lessThan": "33f649f1b1cea39ed360e6c12bba4fac83118e6e",
              "status": "affected",
              "version": "743b9786b14ae0d7d13b3782dccad158e577e9bb",
              "versionType": "git"
            },
            {
              "lessThan": "58168005337eabef345a872be3f87d0215ff3b30",
              "status": "affected",
              "version": "743b9786b14ae0d7d13b3782dccad158e577e9bb",
              "versionType": "git"
            },
            {
              "lessThan": "10c6b90e975358c17856a578419dc449887899c2",
              "status": "affected",
              "version": "743b9786b14ae0d7d13b3782dccad158e577e9bb",
              "versionType": "git"
            },
            {
              "lessThan": "541e79265ea7e339a7c4a462feafe9f8f996e04b",
              "status": "affected",
              "version": "743b9786b14ae0d7d13b3782dccad158e577e9bb",
              "versionType": "git"
            },
            {
              "lessThan": "bae67893578d608e35691dcdfa90c4957debf1d3",
              "status": "affected",
              "version": "743b9786b14ae0d7d13b3782dccad158e577e9bb",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.6"
            },
            {
              "lessThan": "5.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.211",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.211",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: Fix memory leak in dm_sw_fini()\n\nAfter destroying dmub_srv, the memory associated with it is\nnot freed, causing a memory leak:\n\nunreferenced object 0xffff896302b45800 (size 1024):\n  comm \"(udev-worker)\", pid 222, jiffies 4294894636\n  hex dump (first 32 bytes):\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace (crc 6265fd77):\n    [\u003cffffffff993495ed\u003e] kmalloc_trace+0x29d/0x340\n    [\u003cffffffffc0ea4a94\u003e] dm_dmub_sw_init+0xb4/0x450 [amdgpu]\n    [\u003cffffffffc0ea4e55\u003e] dm_sw_init+0x15/0x2b0 [amdgpu]\n    [\u003cffffffffc0ba8557\u003e] amdgpu_device_init+0x1417/0x24e0 [amdgpu]\n    [\u003cffffffffc0bab285\u003e] amdgpu_driver_load_kms+0x15/0x190 [amdgpu]\n    [\u003cffffffffc0ba09c7\u003e] amdgpu_pci_probe+0x187/0x4e0 [amdgpu]\n    [\u003cffffffff9968fd1e\u003e] local_pci_probe+0x3e/0x90\n    [\u003cffffffff996918a3\u003e] pci_device_probe+0xc3/0x230\n    [\u003cffffffff99805872\u003e] really_probe+0xe2/0x480\n    [\u003cffffffff99805c98\u003e] __driver_probe_device+0x78/0x160\n    [\u003cffffffff99805daf\u003e] driver_probe_device+0x1f/0x90\n    [\u003cffffffff9980601e\u003e] __driver_attach+0xce/0x1c0\n    [\u003cffffffff99803170\u003e] bus_for_each_dev+0x70/0xc0\n    [\u003cffffffff99804822\u003e] bus_add_driver+0x112/0x210\n    [\u003cffffffff99807245\u003e] driver_register+0x55/0x100\n    [\u003cffffffff990012d1\u003e] do_one_initcall+0x41/0x300\n\nFix this by freeing dmub_srv after destroying it."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:33.191Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b49b022f7dfce85eb77d0d987008fde5c01d7857"
        },
        {
          "url": "https://git.kernel.org/stable/c/33f649f1b1cea39ed360e6c12bba4fac83118e6e"
        },
        {
          "url": "https://git.kernel.org/stable/c/58168005337eabef345a872be3f87d0215ff3b30"
        },
        {
          "url": "https://git.kernel.org/stable/c/10c6b90e975358c17856a578419dc449887899c2"
        },
        {
          "url": "https://git.kernel.org/stable/c/541e79265ea7e339a7c4a462feafe9f8f996e04b"
        },
        {
          "url": "https://git.kernel.org/stable/c/bae67893578d608e35691dcdfa90c4957debf1d3"
        }
      ],
      "title": "drm/amd/display: Fix memory leak in dm_sw_fini()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26833",
    "datePublished": "2024-04-17T10:10:01.654Z",
    "dateReserved": "2024-02-19T14:20:24.181Z",
    "dateUpdated": "2025-05-04T08:57:33.191Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26885 (GCVE-0-2024-26885)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix DEVMAP_HASH overflow check on 32-bit arches The devmap code allocates a number hash buckets equal to the next power of two of the max_entries value provided when creating the map. When rounding up to the next power of two, the 32-bit variable storing the number of buckets can overflow, and the code checks for overflow by checking if the truncated 32-bit value is equal to 0. However, on 32-bit arches the rounding up itself can overflow mid-way through, because it ends up doing a left-shift of 32 bits on an unsigned long value. If the size of an unsigned long is four bytes, this is undefined behaviour, so there is no guarantee that we'll end up with a nice and tidy 0-value at the end. Syzbot managed to turn this into a crash on arm32 by creating a DEVMAP_HASH with max_entries > 0x80000000 and then trying to update it. Fix this by moving the overflow check to before the rounding up operation.

References

►

URL

Tags

	https://git.kernel.org/stable/c/1f5e352b9088211fa5eb4e1639cd365f4f7d2f65
	https://git.kernel.org/stable/c/4b81a9f92b3676cb74b907a7a209b3d15bd9a7f9
	https://git.kernel.org/stable/c/c826502bed93970f2fd488918a7b8d5f1d30e2e3
	https://git.kernel.org/stable/c/edf7990baa48de5097daa9ac02e06cb4c798a737
	https://git.kernel.org/stable/c/250051acc21f9d4c5c595e4fcb55986ea08c4691
	https://git.kernel.org/stable/c/22079b3a423382335f47d9ed32114e6c9fe88d7c
	https://git.kernel.org/stable/c/e89386f62ce9a9ab9a94835a9890883c23d9d52c
	https://git.kernel.org/stable/c/281d464a34f540de166cee74b723e97ac2515ec3

Impacted products

Vendor

Product

Version

►

Linux

Version: 6f9d451ab1a33728adb72d7ff66a7b374d665176
Version: 6f9d451ab1a33728adb72d7ff66a7b374d665176
Version: 6f9d451ab1a33728adb72d7ff66a7b374d665176
Version: 6f9d451ab1a33728adb72d7ff66a7b374d665176
Version: 6f9d451ab1a33728adb72d7ff66a7b374d665176
Version: 6f9d451ab1a33728adb72d7ff66a7b374d665176
Version: 6f9d451ab1a33728adb72d7ff66a7b374d665176
Version: 6f9d451ab1a33728adb72d7ff66a7b374d665176

Linux

Version: 5.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:5.4:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "5.4"
              },
              {
                "status": "affected",
                "version": "6f9d451ab1a3"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26885",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T19:51:32.926370Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:30.477Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.424Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/225da02acdc97af01b6bc6ce1a3e5362bf01d3fb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c826502bed93970f2fd488918a7b8d5f1d30e2e3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/edf7990baa48de5097daa9ac02e06cb4c798a737"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/250051acc21f9d4c5c595e4fcb55986ea08c4691"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/22079b3a423382335f47d9ed32114e6c9fe88d7c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e89386f62ce9a9ab9a94835a9890883c23d9d52c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/281d464a34f540de166cee74b723e97ac2515ec3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/bpf/devmap.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "1f5e352b9088211fa5eb4e1639cd365f4f7d2f65",
              "status": "affected",
              "version": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
              "versionType": "git"
            },
            {
              "lessThan": "4b81a9f92b3676cb74b907a7a209b3d15bd9a7f9",
              "status": "affected",
              "version": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
              "versionType": "git"
            },
            {
              "lessThan": "c826502bed93970f2fd488918a7b8d5f1d30e2e3",
              "status": "affected",
              "version": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
              "versionType": "git"
            },
            {
              "lessThan": "edf7990baa48de5097daa9ac02e06cb4c798a737",
              "status": "affected",
              "version": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
              "versionType": "git"
            },
            {
              "lessThan": "250051acc21f9d4c5c595e4fcb55986ea08c4691",
              "status": "affected",
              "version": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
              "versionType": "git"
            },
            {
              "lessThan": "22079b3a423382335f47d9ed32114e6c9fe88d7c",
              "status": "affected",
              "version": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
              "versionType": "git"
            },
            {
              "lessThan": "e89386f62ce9a9ab9a94835a9890883c23d9d52c",
              "status": "affected",
              "version": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
              "versionType": "git"
            },
            {
              "lessThan": "281d464a34f540de166cee74b723e97ac2515ec3",
              "status": "affected",
              "version": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/bpf/devmap.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.4"
            },
            {
              "lessThan": "5.4",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.285",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.227",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.285",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.227",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix DEVMAP_HASH overflow check on 32-bit arches\n\nThe devmap code allocates a number hash buckets equal to the next power\nof two of the max_entries value provided when creating the map. When\nrounding up to the next power of two, the 32-bit variable storing the\nnumber of buckets can overflow, and the code checks for overflow by\nchecking if the truncated 32-bit value is equal to 0. However, on 32-bit\narches the rounding up itself can overflow mid-way through, because it\nends up doing a left-shift of 32 bits on an unsigned long value. If the\nsize of an unsigned long is four bytes, this is undefined behaviour, so\nthere is no guarantee that we\u0027ll end up with a nice and tidy 0-value at\nthe end.\n\nSyzbot managed to turn this into a crash on arm32 by creating a\nDEVMAP_HASH with max_entries \u003e 0x80000000 and then trying to update it.\nFix this by moving the overflow check to before the rounding up\noperation."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:51.351Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/1f5e352b9088211fa5eb4e1639cd365f4f7d2f65"
        },
        {
          "url": "https://git.kernel.org/stable/c/4b81a9f92b3676cb74b907a7a209b3d15bd9a7f9"
        },
        {
          "url": "https://git.kernel.org/stable/c/c826502bed93970f2fd488918a7b8d5f1d30e2e3"
        },
        {
          "url": "https://git.kernel.org/stable/c/edf7990baa48de5097daa9ac02e06cb4c798a737"
        },
        {
          "url": "https://git.kernel.org/stable/c/250051acc21f9d4c5c595e4fcb55986ea08c4691"
        },
        {
          "url": "https://git.kernel.org/stable/c/22079b3a423382335f47d9ed32114e6c9fe88d7c"
        },
        {
          "url": "https://git.kernel.org/stable/c/e89386f62ce9a9ab9a94835a9890883c23d9d52c"
        },
        {
          "url": "https://git.kernel.org/stable/c/281d464a34f540de166cee74b723e97ac2515ec3"
        }
      ],
      "title": "bpf: Fix DEVMAP_HASH overflow check on 32-bit arches",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26885",
    "datePublished": "2024-04-17T10:27:40.300Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:51.351Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26656 (GCVE-0-2024-26656)

Vulnerability from cvelistv5

Published

2024-04-02 06:08

Modified

2025-05-04 08:53

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix use-after-free bug The bug can be triggered by sending a single amdgpu_gem_userptr_ioctl to the AMDGPU DRM driver on any ASICs with an invalid address and size. The bug was reported by Joonkyo Jung <joonkyoj@yonsei.ac.kr>. For example the following code: static void Syzkaller1(int fd) { struct drm_amdgpu_gem_userptr arg; int ret; arg.addr = 0xffffffffffff0000; arg.size = 0x80000000; /*2 Gb*/ arg.flags = 0x7; ret = drmIoctl(fd, 0xc1186451/*amdgpu_gem_userptr_ioctl*/, &arg); } Due to the address and size are not valid there is a failure in amdgpu_hmm_register->mmu_interval_notifier_insert->__mmu_interval_notifier_insert-> check_shl_overflow, but we even the amdgpu_hmm_register failure we still call amdgpu_hmm_unregister into amdgpu_gem_object_free which causes access to a bad address. The following stack is below when the issue is reproduced when Kazan is enabled: [ +0.000014] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020 [ +0.000009] RIP: 0010:mmu_interval_notifier_remove+0x327/0x340 [ +0.000017] Code: ff ff 49 89 44 24 08 48 b8 00 01 00 00 00 00 ad de 4c 89 f7 49 89 47 40 48 83 c0 22 49 89 47 48 e8 ce d1 2d 01 e9 32 ff ff ff <0f> 0b e9 16 ff ff ff 4c 89 ef e8 fa 14 b3 ff e9 36 ff ff ff e8 80 [ +0.000014] RSP: 0018:ffffc90002657988 EFLAGS: 00010246 [ +0.000013] RAX: 0000000000000000 RBX: 1ffff920004caf35 RCX: ffffffff8160565b [ +0.000011] RDX: dffffc0000000000 RSI: 0000000000000004 RDI: ffff8881a9f78260 [ +0.000010] RBP: ffffc90002657a70 R08: 0000000000000001 R09: fffff520004caf25 [ +0.000010] R10: 0000000000000003 R11: ffffffff8161d1d6 R12: ffff88810e988c00 [ +0.000010] R13: ffff888126fb5a00 R14: ffff88810e988c0c R15: ffff8881a9f78260 [ +0.000011] FS: 00007ff9ec848540(0000) GS:ffff8883cc880000(0000) knlGS:0000000000000000 [ +0.000012] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ +0.000010] CR2: 000055b3f7e14328 CR3: 00000001b5770000 CR4: 0000000000350ef0 [ +0.000010] Call Trace: [ +0.000006] <TASK> [ +0.000007] ? show_regs+0x6a/0x80 [ +0.000018] ? __warn+0xa5/0x1b0 [ +0.000019] ? mmu_interval_notifier_remove+0x327/0x340 [ +0.000018] ? report_bug+0x24a/0x290 [ +0.000022] ? handle_bug+0x46/0x90 [ +0.000015] ? exc_invalid_op+0x19/0x50 [ +0.000016] ? asm_exc_invalid_op+0x1b/0x20 [ +0.000017] ? kasan_save_stack+0x26/0x50 [ +0.000017] ? mmu_interval_notifier_remove+0x23b/0x340 [ +0.000019] ? mmu_interval_notifier_remove+0x327/0x340 [ +0.000019] ? mmu_interval_notifier_remove+0x23b/0x340 [ +0.000020] ? __pfx_mmu_interval_notifier_remove+0x10/0x10 [ +0.000017] ? kasan_save_alloc_info+0x1e/0x30 [ +0.000018] ? srso_return_thunk+0x5/0x5f [ +0.000014] ? __kasan_kmalloc+0xb1/0xc0 [ +0.000018] ? srso_return_thunk+0x5/0x5f [ +0.000013] ? __kasan_check_read+0x11/0x20 [ +0.000020] amdgpu_hmm_unregister+0x34/0x50 [amdgpu] [ +0.004695] amdgpu_gem_object_free+0x66/0xa0 [amdgpu] [ +0.004534] ? __pfx_amdgpu_gem_object_free+0x10/0x10 [amdgpu] [ +0.004291] ? do_syscall_64+0x5f/0xe0 [ +0.000023] ? srso_return_thunk+0x5/0x5f [ +0.000017] drm_gem_object_free+0x3b/0x50 [drm] [ +0.000489] amdgpu_gem_userptr_ioctl+0x306/0x500 [amdgpu] [ +0.004295] ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu] [ +0.004270] ? srso_return_thunk+0x5/0x5f [ +0.000014] ? __this_cpu_preempt_check+0x13/0x20 [ +0.000015] ? srso_return_thunk+0x5/0x5f [ +0.000013] ? sysvec_apic_timer_interrupt+0x57/0xc0 [ +0.000020] ? srso_return_thunk+0x5/0x5f [ +0.000014] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ +0.000022] ? drm_ioctl_kernel+0x17b/0x1f0 [drm] [ +0.000496] ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu] [ +0.004272] ? drm_ioctl_kernel+0x190/0x1f0 [drm] [ +0.000492] drm_ioctl_kernel+0x140/0x1f0 [drm] [ +0.000497] ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu] [ +0.004297] ? __pfx_drm_ioctl_kernel+0x10/0x10 [d ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/2e13f88e01ae7e28a7e831bf5c2409c4748e0a60
	https://git.kernel.org/stable/c/e87e08c94c9541b4e18c4c13f2f605935f512605
	https://git.kernel.org/stable/c/af054a5fb24a144f99895afce9519d709891894c
	https://git.kernel.org/stable/c/22f665ecfd1225afa1309ace623157d12bb9bb0c
	https://git.kernel.org/stable/c/22207fd5c80177b860279653d017474b2812af5e

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26656",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-02T14:54:50.822759Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:21:23.249Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:07:19.867Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e87e08c94c9541b4e18c4c13f2f605935f512605"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/af054a5fb24a144f99895afce9519d709891894c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/22f665ecfd1225afa1309ace623157d12bb9bb0c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/22207fd5c80177b860279653d017474b2812af5e"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdgpu/amdgpu_hmm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "2e13f88e01ae7e28a7e831bf5c2409c4748e0a60",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "e87e08c94c9541b4e18c4c13f2f605935f512605",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "af054a5fb24a144f99895afce9519d709891894c",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "22f665ecfd1225afa1309ace623157d12bb9bb0c",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "22207fd5c80177b860279653d017474b2812af5e",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdgpu/amdgpu_hmm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.132",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.132",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: fix use-after-free bug\n\nThe bug can be triggered by sending a single amdgpu_gem_userptr_ioctl\nto the AMDGPU DRM driver on any ASICs with an invalid address and size.\nThe bug was reported by Joonkyo Jung \u003cjoonkyoj@yonsei.ac.kr\u003e.\nFor example the following code:\n\nstatic void Syzkaller1(int fd)\n{\n\tstruct drm_amdgpu_gem_userptr arg;\n\tint ret;\n\n\targ.addr = 0xffffffffffff0000;\n\targ.size = 0x80000000; /*2 Gb*/\n\targ.flags = 0x7;\n\tret = drmIoctl(fd, 0xc1186451/*amdgpu_gem_userptr_ioctl*/, \u0026arg);\n}\n\nDue to the address and size are not valid there is a failure in\namdgpu_hmm_register-\u003emmu_interval_notifier_insert-\u003e__mmu_interval_notifier_insert-\u003e\ncheck_shl_overflow, but we even the amdgpu_hmm_register failure we still call\namdgpu_hmm_unregister into  amdgpu_gem_object_free which causes access to a bad address.\nThe following stack is below when the issue is reproduced when Kazan is enabled:\n\n[  +0.000014] Hardware name: ASUS System Product Name/ROG STRIX B550-F GAMING (WI-FI), BIOS 1401 12/03/2020\n[  +0.000009] RIP: 0010:mmu_interval_notifier_remove+0x327/0x340\n[  +0.000017] Code: ff ff 49 89 44 24 08 48 b8 00 01 00 00 00 00 ad de 4c 89 f7 49 89 47 40 48 83 c0 22 49 89 47 48 e8 ce d1 2d 01 e9 32 ff ff ff \u003c0f\u003e 0b e9 16 ff ff ff 4c 89 ef e8 fa 14 b3 ff e9 36 ff ff ff e8 80\n[  +0.000014] RSP: 0018:ffffc90002657988 EFLAGS: 00010246\n[  +0.000013] RAX: 0000000000000000 RBX: 1ffff920004caf35 RCX: ffffffff8160565b\n[  +0.000011] RDX: dffffc0000000000 RSI: 0000000000000004 RDI: ffff8881a9f78260\n[  +0.000010] RBP: ffffc90002657a70 R08: 0000000000000001 R09: fffff520004caf25\n[  +0.000010] R10: 0000000000000003 R11: ffffffff8161d1d6 R12: ffff88810e988c00\n[  +0.000010] R13: ffff888126fb5a00 R14: ffff88810e988c0c R15: ffff8881a9f78260\n[  +0.000011] FS:  00007ff9ec848540(0000) GS:ffff8883cc880000(0000) knlGS:0000000000000000\n[  +0.000012] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[  +0.000010] CR2: 000055b3f7e14328 CR3: 00000001b5770000 CR4: 0000000000350ef0\n[  +0.000010] Call Trace:\n[  +0.000006]  \u003cTASK\u003e\n[  +0.000007]  ? show_regs+0x6a/0x80\n[  +0.000018]  ? __warn+0xa5/0x1b0\n[  +0.000019]  ? mmu_interval_notifier_remove+0x327/0x340\n[  +0.000018]  ? report_bug+0x24a/0x290\n[  +0.000022]  ? handle_bug+0x46/0x90\n[  +0.000015]  ? exc_invalid_op+0x19/0x50\n[  +0.000016]  ? asm_exc_invalid_op+0x1b/0x20\n[  +0.000017]  ? kasan_save_stack+0x26/0x50\n[  +0.000017]  ? mmu_interval_notifier_remove+0x23b/0x340\n[  +0.000019]  ? mmu_interval_notifier_remove+0x327/0x340\n[  +0.000019]  ? mmu_interval_notifier_remove+0x23b/0x340\n[  +0.000020]  ? __pfx_mmu_interval_notifier_remove+0x10/0x10\n[  +0.000017]  ? kasan_save_alloc_info+0x1e/0x30\n[  +0.000018]  ? srso_return_thunk+0x5/0x5f\n[  +0.000014]  ? __kasan_kmalloc+0xb1/0xc0\n[  +0.000018]  ? srso_return_thunk+0x5/0x5f\n[  +0.000013]  ? __kasan_check_read+0x11/0x20\n[  +0.000020]  amdgpu_hmm_unregister+0x34/0x50 [amdgpu]\n[  +0.004695]  amdgpu_gem_object_free+0x66/0xa0 [amdgpu]\n[  +0.004534]  ? __pfx_amdgpu_gem_object_free+0x10/0x10 [amdgpu]\n[  +0.004291]  ? do_syscall_64+0x5f/0xe0\n[  +0.000023]  ? srso_return_thunk+0x5/0x5f\n[  +0.000017]  drm_gem_object_free+0x3b/0x50 [drm]\n[  +0.000489]  amdgpu_gem_userptr_ioctl+0x306/0x500 [amdgpu]\n[  +0.004295]  ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu]\n[  +0.004270]  ? srso_return_thunk+0x5/0x5f\n[  +0.000014]  ? __this_cpu_preempt_check+0x13/0x20\n[  +0.000015]  ? srso_return_thunk+0x5/0x5f\n[  +0.000013]  ? sysvec_apic_timer_interrupt+0x57/0xc0\n[  +0.000020]  ? srso_return_thunk+0x5/0x5f\n[  +0.000014]  ? asm_sysvec_apic_timer_interrupt+0x1b/0x20\n[  +0.000022]  ? drm_ioctl_kernel+0x17b/0x1f0 [drm]\n[  +0.000496]  ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu]\n[  +0.004272]  ? drm_ioctl_kernel+0x190/0x1f0 [drm]\n[  +0.000492]  drm_ioctl_kernel+0x140/0x1f0 [drm]\n[  +0.000497]  ? __pfx_amdgpu_gem_userptr_ioctl+0x10/0x10 [amdgpu]\n[  +0.004297]  ? __pfx_drm_ioctl_kernel+0x10/0x10 [d\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:53:13.989Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/2e13f88e01ae7e28a7e831bf5c2409c4748e0a60"
        },
        {
          "url": "https://git.kernel.org/stable/c/e87e08c94c9541b4e18c4c13f2f605935f512605"
        },
        {
          "url": "https://git.kernel.org/stable/c/af054a5fb24a144f99895afce9519d709891894c"
        },
        {
          "url": "https://git.kernel.org/stable/c/22f665ecfd1225afa1309ace623157d12bb9bb0c"
        },
        {
          "url": "https://git.kernel.org/stable/c/22207fd5c80177b860279653d017474b2812af5e"
        }
      ],
      "title": "drm/amdgpu: fix use-after-free bug",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26656",
    "datePublished": "2024-04-02T06:08:43.558Z",
    "dateReserved": "2024-02-19T14:20:24.145Z",
    "dateUpdated": "2025-05-04T08:53:13.989Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27038 (GCVE-0-2024-27038)

Vulnerability from cvelistv5

Published

2024-05-01 12:53

Modified

2025-05-04 09:02

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: clk: Fix clk_core_get NULL dereference It is possible for clk_core_get to dereference a NULL in the following sequence: clk_core_get() of_clk_get_hw_from_clkspec() __of_clk_get_hw_from_provider() __clk_get_hw() __clk_get_hw() can return NULL which is dereferenced by clk_core_get() at hw->core. Prior to commit dde4eff47c82 ("clk: Look for parents with clkdev based clk_lookups") the check IS_ERR_OR_NULL() was performed which would have caught the NULL. Reading the description of this function it talks about returning NULL but that cannot be so at the moment. Update the function to check for hw before dereferencing it and return NULL if hw is NULL.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d7ae7d1265686b55832a445b1db8cdd69738ac07
	https://git.kernel.org/stable/c/239174535dba11f7b83de0eaaa27909024f8c185
	https://git.kernel.org/stable/c/0efb9ef6fb95384ba631d6819e66f10392aabfa2
	https://git.kernel.org/stable/c/a8b2b26fdd011ebe36d68a9a321ca45801685959
	https://git.kernel.org/stable/c/a5d9b1aa61b401867b9066d54086b3e4ee91f8ed
	https://git.kernel.org/stable/c/c554badcae9c45b737a22d23454170c6020b90e6
	https://git.kernel.org/stable/c/6f073b24a9e2becd25ac4505a9780a87e621bb51
	https://git.kernel.org/stable/c/e97fe4901e0f59a0bfd524578fe3768f8ca42428

Impacted products

Vendor

Product

Version

►

Linux

Version: dde4eff47c82c52a72af333d9e55370eee6d95d6
Version: dde4eff47c82c52a72af333d9e55370eee6d95d6
Version: dde4eff47c82c52a72af333d9e55370eee6d95d6
Version: dde4eff47c82c52a72af333d9e55370eee6d95d6
Version: dde4eff47c82c52a72af333d9e55370eee6d95d6
Version: dde4eff47c82c52a72af333d9e55370eee6d95d6
Version: dde4eff47c82c52a72af333d9e55370eee6d95d6
Version: dde4eff47c82c52a72af333d9e55370eee6d95d6

Linux

Version: 5.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27038",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-01T13:38:53.856287Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:22:44.741Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.879Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d7ae7d1265686b55832a445b1db8cdd69738ac07"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/239174535dba11f7b83de0eaaa27909024f8c185"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0efb9ef6fb95384ba631d6819e66f10392aabfa2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a8b2b26fdd011ebe36d68a9a321ca45801685959"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a5d9b1aa61b401867b9066d54086b3e4ee91f8ed"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c554badcae9c45b737a22d23454170c6020b90e6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6f073b24a9e2becd25ac4505a9780a87e621bb51"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e97fe4901e0f59a0bfd524578fe3768f8ca42428"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/clk.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d7ae7d1265686b55832a445b1db8cdd69738ac07",
              "status": "affected",
              "version": "dde4eff47c82c52a72af333d9e55370eee6d95d6",
              "versionType": "git"
            },
            {
              "lessThan": "239174535dba11f7b83de0eaaa27909024f8c185",
              "status": "affected",
              "version": "dde4eff47c82c52a72af333d9e55370eee6d95d6",
              "versionType": "git"
            },
            {
              "lessThan": "0efb9ef6fb95384ba631d6819e66f10392aabfa2",
              "status": "affected",
              "version": "dde4eff47c82c52a72af333d9e55370eee6d95d6",
              "versionType": "git"
            },
            {
              "lessThan": "a8b2b26fdd011ebe36d68a9a321ca45801685959",
              "status": "affected",
              "version": "dde4eff47c82c52a72af333d9e55370eee6d95d6",
              "versionType": "git"
            },
            {
              "lessThan": "a5d9b1aa61b401867b9066d54086b3e4ee91f8ed",
              "status": "affected",
              "version": "dde4eff47c82c52a72af333d9e55370eee6d95d6",
              "versionType": "git"
            },
            {
              "lessThan": "c554badcae9c45b737a22d23454170c6020b90e6",
              "status": "affected",
              "version": "dde4eff47c82c52a72af333d9e55370eee6d95d6",
              "versionType": "git"
            },
            {
              "lessThan": "6f073b24a9e2becd25ac4505a9780a87e621bb51",
              "status": "affected",
              "version": "dde4eff47c82c52a72af333d9e55370eee6d95d6",
              "versionType": "git"
            },
            {
              "lessThan": "e97fe4901e0f59a0bfd524578fe3768f8ca42428",
              "status": "affected",
              "version": "dde4eff47c82c52a72af333d9e55370eee6d95d6",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/clk.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.2"
            },
            {
              "lessThan": "5.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: Fix clk_core_get NULL dereference\n\nIt is possible for clk_core_get to dereference a NULL in the following\nsequence:\n\nclk_core_get()\n    of_clk_get_hw_from_clkspec()\n        __of_clk_get_hw_from_provider()\n            __clk_get_hw()\n\n__clk_get_hw() can return NULL which is dereferenced by clk_core_get() at\nhw-\u003ecore.\n\nPrior to commit dde4eff47c82 (\"clk: Look for parents with clkdev based\nclk_lookups\") the check IS_ERR_OR_NULL() was performed which would have\ncaught the NULL.\n\nReading the description of this function it talks about returning NULL but\nthat cannot be so at the moment.\n\nUpdate the function to check for hw before dereferencing it and return NULL\nif hw is NULL."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:02:51.146Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d7ae7d1265686b55832a445b1db8cdd69738ac07"
        },
        {
          "url": "https://git.kernel.org/stable/c/239174535dba11f7b83de0eaaa27909024f8c185"
        },
        {
          "url": "https://git.kernel.org/stable/c/0efb9ef6fb95384ba631d6819e66f10392aabfa2"
        },
        {
          "url": "https://git.kernel.org/stable/c/a8b2b26fdd011ebe36d68a9a321ca45801685959"
        },
        {
          "url": "https://git.kernel.org/stable/c/a5d9b1aa61b401867b9066d54086b3e4ee91f8ed"
        },
        {
          "url": "https://git.kernel.org/stable/c/c554badcae9c45b737a22d23454170c6020b90e6"
        },
        {
          "url": "https://git.kernel.org/stable/c/6f073b24a9e2becd25ac4505a9780a87e621bb51"
        },
        {
          "url": "https://git.kernel.org/stable/c/e97fe4901e0f59a0bfd524578fe3768f8ca42428"
        }
      ],
      "title": "clk: Fix clk_core_get NULL dereference",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27038",
    "datePublished": "2024-05-01T12:53:53.698Z",
    "dateReserved": "2024-02-19T14:20:24.212Z",
    "dateUpdated": "2025-05-04T09:02:51.146Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47205 (GCVE-0-2021-47205)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: clk: sunxi-ng: Unregister clocks/resets when unbinding Currently, unbinding a CCU driver unmaps the device's MMIO region, while leaving its clocks/resets and their providers registered. This can cause a page fault later when some clock operation tries to perform MMIO. Fix this by separating the CCU initialization from the memory allocation, and then using a devres callback to unregister the clocks and resets. This also fixes a memory leak of the `struct ccu_reset`, and uses the correct owner (the specific platform driver) for the clocks and resets. Early OF clock providers are never unregistered, and limited error handling is possible, so they are mostly unchanged. The error reporting is made more consistent by moving the message inside of_sunxi_ccu_probe.

References

►

URL

Tags

	https://git.kernel.org/stable/c/b5dd513daa70ee8f6d281a20bd28485ee9bb7db2
	https://git.kernel.org/stable/c/9bec2b9c6134052994115d2d3374e96f2ccb9b9d

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47205",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-12T16:35:34.459047Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:13:34.061Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.375Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b5dd513daa70ee8f6d281a20bd28485ee9bb7db2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9bec2b9c6134052994115d2d3374e96f2ccb9b9d"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/sunxi-ng/ccu-sun4i-a10.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-a100-r.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-a100.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-a64.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-h6-r.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-h6.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-h616.c",
            "drivers/clk/sunxi-ng/ccu-sun5i.c",
            "drivers/clk/sunxi-ng/ccu-sun6i-a31.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-a23.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-a33.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-a83t.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-de2.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-h3.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-r.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-r40.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-v3s.c",
            "drivers/clk/sunxi-ng/ccu-sun9i-a80-de.c",
            "drivers/clk/sunxi-ng/ccu-sun9i-a80-usb.c",
            "drivers/clk/sunxi-ng/ccu-sun9i-a80.c",
            "drivers/clk/sunxi-ng/ccu-suniv-f1c100s.c",
            "drivers/clk/sunxi-ng/ccu_common.c",
            "drivers/clk/sunxi-ng/ccu_common.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b5dd513daa70ee8f6d281a20bd28485ee9bb7db2",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "9bec2b9c6134052994115d2d3374e96f2ccb9b9d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/sunxi-ng/ccu-sun4i-a10.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-a100-r.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-a100.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-a64.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-h6-r.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-h6.c",
            "drivers/clk/sunxi-ng/ccu-sun50i-h616.c",
            "drivers/clk/sunxi-ng/ccu-sun5i.c",
            "drivers/clk/sunxi-ng/ccu-sun6i-a31.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-a23.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-a33.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-a83t.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-de2.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-h3.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-r.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-r40.c",
            "drivers/clk/sunxi-ng/ccu-sun8i-v3s.c",
            "drivers/clk/sunxi-ng/ccu-sun9i-a80-de.c",
            "drivers/clk/sunxi-ng/ccu-sun9i-a80-usb.c",
            "drivers/clk/sunxi-ng/ccu-sun9i-a80.c",
            "drivers/clk/sunxi-ng/ccu-suniv-f1c100s.c",
            "drivers/clk/sunxi-ng/ccu_common.c",
            "drivers/clk/sunxi-ng/ccu_common.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: sunxi-ng: Unregister clocks/resets when unbinding\n\nCurrently, unbinding a CCU driver unmaps the device\u0027s MMIO region, while\nleaving its clocks/resets and their providers registered. This can cause\na page fault later when some clock operation tries to perform MMIO. Fix\nthis by separating the CCU initialization from the memory allocation,\nand then using a devres callback to unregister the clocks and resets.\n\nThis also fixes a memory leak of the `struct ccu_reset`, and uses the\ncorrect owner (the specific platform driver) for the clocks and resets.\n\nEarly OF clock providers are never unregistered, and limited error\nhandling is possible, so they are mostly unchanged. The error reporting\nis made more consistent by moving the message inside of_sunxi_ccu_probe."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:21.786Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b5dd513daa70ee8f6d281a20bd28485ee9bb7db2"
        },
        {
          "url": "https://git.kernel.org/stable/c/9bec2b9c6134052994115d2d3374e96f2ccb9b9d"
        }
      ],
      "title": "clk: sunxi-ng: Unregister clocks/resets when unbinding",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47205",
    "datePublished": "2024-04-10T18:56:38.347Z",
    "dateReserved": "2024-03-25T09:12:14.117Z",
    "dateUpdated": "2025-05-04T07:06:21.786Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48637 (GCVE-0-2022-48637)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: bnxt: prevent skb UAF after handing over to PTP worker When reading the timestamp is required bnxt_tx_int() hands over the ownership of the completed skb to the PTP worker. The skb should not be used afterwards, as the worker may run before the rest of our code and free the skb, leading to a use-after-free. Since dev_kfree_skb_any() accepts NULL make the loss of ownership more obvious and set skb to NULL.

References

►

URL

Tags

	https://git.kernel.org/stable/c/08483e4c0c83b221b8891434a04cec405dee94a6
	https://git.kernel.org/stable/c/32afa1f23e42cc635ccf4c39f24514d03d1e8338
	https://git.kernel.org/stable/c/c31f26c8f69f776759cbbdfb38e40ea91aa0dd65

Impacted products

Vendor

Product

Version

►

Linux

Version: 83bb623c968e7351aee5111547693f95f330dc5a
Version: 83bb623c968e7351aee5111547693f95f330dc5a
Version: 83bb623c968e7351aee5111547693f95f330dc5a

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48637",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-07T17:06:57.891405Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-07T17:07:15.083Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.303Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/08483e4c0c83b221b8891434a04cec405dee94a6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/32afa1f23e42cc635ccf4c39f24514d03d1e8338"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c31f26c8f69f776759cbbdfb38e40ea91aa0dd65"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/broadcom/bnxt/bnxt.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "08483e4c0c83b221b8891434a04cec405dee94a6",
              "status": "affected",
              "version": "83bb623c968e7351aee5111547693f95f330dc5a",
              "versionType": "git"
            },
            {
              "lessThan": "32afa1f23e42cc635ccf4c39f24514d03d1e8338",
              "status": "affected",
              "version": "83bb623c968e7351aee5111547693f95f330dc5a",
              "versionType": "git"
            },
            {
              "lessThan": "c31f26c8f69f776759cbbdfb38e40ea91aa0dd65",
              "status": "affected",
              "version": "83bb623c968e7351aee5111547693f95f330dc5a",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/broadcom/bnxt/bnxt.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbnxt: prevent skb UAF after handing over to PTP worker\n\nWhen reading the timestamp is required bnxt_tx_int() hands\nover the ownership of the completed skb to the PTP worker.\nThe skb should not be used afterwards, as the worker may\nrun before the rest of our code and free the skb, leading\nto a use-after-free.\n\nSince dev_kfree_skb_any() accepts NULL make the loss of\nownership more obvious and set skb to NULL."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:14.058Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/08483e4c0c83b221b8891434a04cec405dee94a6"
        },
        {
          "url": "https://git.kernel.org/stable/c/32afa1f23e42cc635ccf4c39f24514d03d1e8338"
        },
        {
          "url": "https://git.kernel.org/stable/c/c31f26c8f69f776759cbbdfb38e40ea91aa0dd65"
        }
      ],
      "title": "bnxt: prevent skb UAF after handing over to PTP worker",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48637",
    "datePublished": "2024-04-28T12:59:33.285Z",
    "dateReserved": "2024-02-25T13:44:28.315Z",
    "dateUpdated": "2025-05-04T08:20:14.058Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26876 (GCVE-0-2024-26876)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: adv7511: fix crash on irq during probe Moved IRQ registration down to end of adv7511_probe(). If an IRQ already is pending during adv7511_probe (before adv7511_cec_init) then cec_received_msg_ts could crash using uninitialized data: Unable to handle kernel read from unreadable memory at virtual address 00000000000003d5 Internal error: Oops: 96000004 [#1] PREEMPT_RT SMP Call trace: cec_received_msg_ts+0x48/0x990 [cec] adv7511_cec_irq_process+0x1cc/0x308 [adv7511] adv7511_irq_process+0xd8/0x120 [adv7511] adv7511_irq_handler+0x1c/0x30 [adv7511] irq_thread_fn+0x30/0xa0 irq_thread+0x14c/0x238 kthread+0x190/0x1a8

References

►

URL

Tags

	https://git.kernel.org/stable/c/50f4b57e9a9db4ede9294f39b9e75b5f26bae9b7
	https://git.kernel.org/stable/c/955c1252930677762e0db2b6b9e36938c887445c
	https://git.kernel.org/stable/c/28a94271bd50e4cf498df0381f776f8ea40a289e
	https://git.kernel.org/stable/c/aeedaee5ef5468caf59e2bb1265c2116e0c9a924

Impacted products

Vendor

Product

Version

►

Linux

Version: 3b1b975003e4a3da4b93ab032487a3ae4afca7b5
Version: 3b1b975003e4a3da4b93ab032487a3ae4afca7b5
Version: 3b1b975003e4a3da4b93ab032487a3ae4afca7b5
Version: 3b1b975003e4a3da4b93ab032487a3ae4afca7b5

Linux

Version: 4.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26876",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:40:11.251562Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:22:46.691Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.363Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/955c1252930677762e0db2b6b9e36938c887445c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/28a94271bd50e4cf498df0381f776f8ea40a289e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/aeedaee5ef5468caf59e2bb1265c2116e0c9a924"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/bridge/adv7511/adv7511_drv.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "50f4b57e9a9db4ede9294f39b9e75b5f26bae9b7",
              "status": "affected",
              "version": "3b1b975003e4a3da4b93ab032487a3ae4afca7b5",
              "versionType": "git"
            },
            {
              "lessThan": "955c1252930677762e0db2b6b9e36938c887445c",
              "status": "affected",
              "version": "3b1b975003e4a3da4b93ab032487a3ae4afca7b5",
              "versionType": "git"
            },
            {
              "lessThan": "28a94271bd50e4cf498df0381f776f8ea40a289e",
              "status": "affected",
              "version": "3b1b975003e4a3da4b93ab032487a3ae4afca7b5",
              "versionType": "git"
            },
            {
              "lessThan": "aeedaee5ef5468caf59e2bb1265c2116e0c9a924",
              "status": "affected",
              "version": "3b1b975003e4a3da4b93ab032487a3ae4afca7b5",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/bridge/adv7511/adv7511_drv.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.15"
            },
            {
              "lessThan": "4.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.55",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.55",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/bridge: adv7511: fix crash on irq during probe\n\nMoved IRQ registration down to end of adv7511_probe().\n\nIf an IRQ already is pending during adv7511_probe\n(before adv7511_cec_init) then cec_received_msg_ts\ncould crash using uninitialized data:\n\n    Unable to handle kernel read from unreadable memory at virtual address 00000000000003d5\n    Internal error: Oops: 96000004 [#1] PREEMPT_RT SMP\n    Call trace:\n     cec_received_msg_ts+0x48/0x990 [cec]\n     adv7511_cec_irq_process+0x1cc/0x308 [adv7511]\n     adv7511_irq_process+0xd8/0x120 [adv7511]\n     adv7511_irq_handler+0x1c/0x30 [adv7511]\n     irq_thread_fn+0x30/0xa0\n     irq_thread+0x14c/0x238\n     kthread+0x190/0x1a8"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:38.582Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/50f4b57e9a9db4ede9294f39b9e75b5f26bae9b7"
        },
        {
          "url": "https://git.kernel.org/stable/c/955c1252930677762e0db2b6b9e36938c887445c"
        },
        {
          "url": "https://git.kernel.org/stable/c/28a94271bd50e4cf498df0381f776f8ea40a289e"
        },
        {
          "url": "https://git.kernel.org/stable/c/aeedaee5ef5468caf59e2bb1265c2116e0c9a924"
        }
      ],
      "title": "drm/bridge: adv7511: fix crash on irq during probe",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26876",
    "datePublished": "2024-04-17T10:27:34.553Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:38.582Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26982 (GCVE-0-2024-26982)

Vulnerability from cvelistv5

Published

2024-05-01 05:27

Modified

2025-05-04 09:01

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the inode number is not the invalid value of zero Syskiller has produced an out of bounds access in fill_meta_index(). That out of bounds access is ultimately caused because the inode has an inode number with the invalid value of zero, which was not checked. The reason this causes the out of bounds access is due to following sequence of events: 1. Fill_meta_index() is called to allocate (via empty_meta_index()) and fill a metadata index. It however suffers a data read error and aborts, invalidating the newly returned empty metadata index. It does this by setting the inode number of the index to zero, which means unused (zero is not a valid inode number). 2. When fill_meta_index() is subsequently called again on another read operation, locate_meta_index() returns the previous index because it matches the inode number of 0. Because this index has been returned it is expected to have been filled, and because it hasn't been, an out of bounds access is performed. This patch adds a sanity check which checks that the inode number is not zero when the inode is created and returns -EINVAL if it is. [phillip@squashfs.org.uk: whitespace fix]

References

►

URL

Tags

	https://git.kernel.org/stable/c/32c114a58236fe67141634774559f21f1dc96fd7
	https://git.kernel.org/stable/c/4a1b6f89825e267e156ccaeba3d235edcac77f94
	https://git.kernel.org/stable/c/cf46f88b92cfc0e32bd8a21ba1273cff13b8745f
	https://git.kernel.org/stable/c/5b99dea79650b50909c50aba24fbae00f203f013
	https://git.kernel.org/stable/c/be383effaee3d89034f0828038f95065b518772e
	https://git.kernel.org/stable/c/7def00ebc9f2d6a581ddf46ce4541f84a10680e5
	https://git.kernel.org/stable/c/9253c54e01b6505d348afbc02abaa4d9f8a01395

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.866Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/be383effaee3d89034f0828038f95065b518772e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7def00ebc9f2d6a581ddf46ce4541f84a10680e5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9253c54e01b6505d348afbc02abaa4d9f8a01395"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26982",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:45:06.926436Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:42.999Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/squashfs/inode.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "32c114a58236fe67141634774559f21f1dc96fd7",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4a1b6f89825e267e156ccaeba3d235edcac77f94",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "cf46f88b92cfc0e32bd8a21ba1273cff13b8745f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5b99dea79650b50909c50aba24fbae00f203f013",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "be383effaee3d89034f0828038f95065b518772e",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "7def00ebc9f2d6a581ddf46ce4541f84a10680e5",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "9253c54e01b6505d348afbc02abaa4d9f8a01395",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/squashfs/inode.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.291",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.235",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.179",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.130",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.30",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.8",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.291",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.235",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.179",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.130",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nSquashfs: check the inode number is not the invalid value of zero\n\nSyskiller has produced an out of bounds access in fill_meta_index().\n\nThat out of bounds access is ultimately caused because the inode\nhas an inode number with the invalid value of zero, which was not checked.\n\nThe reason this causes the out of bounds access is due to following\nsequence of events:\n\n1. Fill_meta_index() is called to allocate (via empty_meta_index())\n   and fill a metadata index.  It however suffers a data read error\n   and aborts, invalidating the newly returned empty metadata index.\n   It does this by setting the inode number of the index to zero,\n   which means unused (zero is not a valid inode number).\n\n2. When fill_meta_index() is subsequently called again on another\n   read operation, locate_meta_index() returns the previous index\n   because it matches the inode number of 0.  Because this index\n   has been returned it is expected to have been filled, and because\n   it hasn\u0027t been, an out of bounds access is performed.\n\nThis patch adds a sanity check which checks that the inode number\nis not zero when the inode is created and returns -EINVAL if it is.\n\n[phillip@squashfs.org.uk: whitespace fix]"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:01:26.228Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/32c114a58236fe67141634774559f21f1dc96fd7"
        },
        {
          "url": "https://git.kernel.org/stable/c/4a1b6f89825e267e156ccaeba3d235edcac77f94"
        },
        {
          "url": "https://git.kernel.org/stable/c/cf46f88b92cfc0e32bd8a21ba1273cff13b8745f"
        },
        {
          "url": "https://git.kernel.org/stable/c/5b99dea79650b50909c50aba24fbae00f203f013"
        },
        {
          "url": "https://git.kernel.org/stable/c/be383effaee3d89034f0828038f95065b518772e"
        },
        {
          "url": "https://git.kernel.org/stable/c/7def00ebc9f2d6a581ddf46ce4541f84a10680e5"
        },
        {
          "url": "https://git.kernel.org/stable/c/9253c54e01b6505d348afbc02abaa4d9f8a01395"
        }
      ],
      "title": "Squashfs: check the inode number is not the invalid value of zero",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26982",
    "datePublished": "2024-05-01T05:27:11.032Z",
    "dateReserved": "2024-02-19T14:20:24.204Z",
    "dateUpdated": "2025-05-04T09:01:26.228Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48639 (GCVE-0-2022-48639)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net: sched: fix possible refcount leak in tc_new_tfilter() tfilter_put need to be called to put the refount got by tp->ops->get to avoid possible refcount leak when chain->tmplt_ops != NULL and chain->tmplt_ops != tp->ops.

References

►

URL

Tags

	https://git.kernel.org/stable/c/903f7d322c17d8e306d766404b4604e81653902a
	https://git.kernel.org/stable/c/8844c750eeb03452e2b3319c27a526f447b82596
	https://git.kernel.org/stable/c/f8162aed962be8fa07445b2b5928e84ab40dd8d7
	https://git.kernel.org/stable/c/0559d91ee3a2cd81b15ad5cd507539d6da867f88
	https://git.kernel.org/stable/c/c2e1cfefcac35e0eea229e148c8284088ce437b5

Impacted products

Vendor

Product

Version

►

Linux

Version: 7d5509fa0d3ddfe252b4418513e493ac98de3317
Version: 7d5509fa0d3ddfe252b4418513e493ac98de3317
Version: 7d5509fa0d3ddfe252b4418513e493ac98de3317
Version: 7d5509fa0d3ddfe252b4418513e493ac98de3317
Version: 7d5509fa0d3ddfe252b4418513e493ac98de3317

Linux

Version: 5.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48639",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T18:40:42.909277Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:40.764Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.459Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/903f7d322c17d8e306d766404b4604e81653902a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8844c750eeb03452e2b3319c27a526f447b82596"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f8162aed962be8fa07445b2b5928e84ab40dd8d7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0559d91ee3a2cd81b15ad5cd507539d6da867f88"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c2e1cfefcac35e0eea229e148c8284088ce437b5"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/sched/cls_api.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "903f7d322c17d8e306d766404b4604e81653902a",
              "status": "affected",
              "version": "7d5509fa0d3ddfe252b4418513e493ac98de3317",
              "versionType": "git"
            },
            {
              "lessThan": "8844c750eeb03452e2b3319c27a526f447b82596",
              "status": "affected",
              "version": "7d5509fa0d3ddfe252b4418513e493ac98de3317",
              "versionType": "git"
            },
            {
              "lessThan": "f8162aed962be8fa07445b2b5928e84ab40dd8d7",
              "status": "affected",
              "version": "7d5509fa0d3ddfe252b4418513e493ac98de3317",
              "versionType": "git"
            },
            {
              "lessThan": "0559d91ee3a2cd81b15ad5cd507539d6da867f88",
              "status": "affected",
              "version": "7d5509fa0d3ddfe252b4418513e493ac98de3317",
              "versionType": "git"
            },
            {
              "lessThan": "c2e1cfefcac35e0eea229e148c8284088ce437b5",
              "status": "affected",
              "version": "7d5509fa0d3ddfe252b4418513e493ac98de3317",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/sched/cls_api.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.1"
            },
            {
              "lessThan": "5.1",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.1",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: sched: fix possible refcount leak in tc_new_tfilter()\n\ntfilter_put need to be called to put the refount got by tp-\u003eops-\u003eget to\navoid possible refcount leak when chain-\u003etmplt_ops != NULL and\nchain-\u003etmplt_ops != tp-\u003eops."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:16.350Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/903f7d322c17d8e306d766404b4604e81653902a"
        },
        {
          "url": "https://git.kernel.org/stable/c/8844c750eeb03452e2b3319c27a526f447b82596"
        },
        {
          "url": "https://git.kernel.org/stable/c/f8162aed962be8fa07445b2b5928e84ab40dd8d7"
        },
        {
          "url": "https://git.kernel.org/stable/c/0559d91ee3a2cd81b15ad5cd507539d6da867f88"
        },
        {
          "url": "https://git.kernel.org/stable/c/c2e1cfefcac35e0eea229e148c8284088ce437b5"
        }
      ],
      "title": "net: sched: fix possible refcount leak in tc_new_tfilter()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48639",
    "datePublished": "2024-04-28T12:59:42.410Z",
    "dateReserved": "2024-02-25T13:44:28.316Z",
    "dateUpdated": "2025-05-04T08:20:16.350Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47203 (GCVE-0-2021-47203)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() When parsing the txq list in lpfc_drain_txq(), the driver attempts to pass the requests to the adapter. If such an attempt fails, a local "fail_msg" string is set and a log message output. The job is then added to a completions list for cancellation. Processing of any further jobs from the txq list continues, but since "fail_msg" remains set, jobs are added to the completions list regardless of whether a wqe was passed to the adapter. If successfully added to txcmplq, jobs are added to both lists resulting in list corruption. Fix by clearing the fail_msg string after adding a job to the completions list. This stops the subsequent jobs from being added to the completions list unless they had an appropriate failure.

References

►

URL

Tags

	https://git.kernel.org/stable/c/ad4776b5eb2e58af1226847fcd3b4f6d051674dd
	https://git.kernel.org/stable/c/ec70d80a8642900086447ba0cdc79e3f44d42e8f
	https://git.kernel.org/stable/c/f05a0191b90156e539cccc189b9d87ca2a4d9305
	https://git.kernel.org/stable/c/b291d147d0268e93ad866f8bc820ea14497abc9b
	https://git.kernel.org/stable/c/16bcbfb56d759c25665f786e33ec633b9508a08f
	https://git.kernel.org/stable/c/c097bd5a59162156d9c2077a2f58732ffbaa9fca
	https://git.kernel.org/stable/c/814d3610c4ce86e8cf285b2cdac0057a42e82de5
	https://git.kernel.org/stable/c/99154581b05c8fb22607afb7c3d66c1bace6aa5d

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47203",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-10T19:44:44.009129Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:14:01.015Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.414Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ad4776b5eb2e58af1226847fcd3b4f6d051674dd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ec70d80a8642900086447ba0cdc79e3f44d42e8f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f05a0191b90156e539cccc189b9d87ca2a4d9305"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b291d147d0268e93ad866f8bc820ea14497abc9b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/16bcbfb56d759c25665f786e33ec633b9508a08f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c097bd5a59162156d9c2077a2f58732ffbaa9fca"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/814d3610c4ce86e8cf285b2cdac0057a42e82de5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/99154581b05c8fb22607afb7c3d66c1bace6aa5d"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/lpfc/lpfc_sli.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ad4776b5eb2e58af1226847fcd3b4f6d051674dd",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ec70d80a8642900086447ba0cdc79e3f44d42e8f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f05a0191b90156e539cccc189b9d87ca2a4d9305",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b291d147d0268e93ad866f8bc820ea14497abc9b",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "16bcbfb56d759c25665f786e33ec633b9508a08f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "c097bd5a59162156d9c2077a2f58732ffbaa9fca",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "814d3610c4ce86e8cf285b2cdac0057a42e82de5",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "99154581b05c8fb22607afb7c3d66c1bace6aa5d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/lpfc/lpfc_sli.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.4.*",
              "status": "unaffected",
              "version": "4.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.291",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.256",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.4.293",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.291",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.256",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Fix list_add() corruption in lpfc_drain_txq()\n\nWhen parsing the txq list in lpfc_drain_txq(), the driver attempts to pass\nthe requests to the adapter. If such an attempt fails, a local \"fail_msg\"\nstring is set and a log message output.  The job is then added to a\ncompletions list for cancellation.\n\nProcessing of any further jobs from the txq list continues, but since\n\"fail_msg\" remains set, jobs are added to the completions list regardless\nof whether a wqe was passed to the adapter.  If successfully added to\ntxcmplq, jobs are added to both lists resulting in list corruption.\n\nFix by clearing the fail_msg string after adding a job to the completions\nlist. This stops the subsequent jobs from being added to the completions\nlist unless they had an appropriate failure."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:19.424Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ad4776b5eb2e58af1226847fcd3b4f6d051674dd"
        },
        {
          "url": "https://git.kernel.org/stable/c/ec70d80a8642900086447ba0cdc79e3f44d42e8f"
        },
        {
          "url": "https://git.kernel.org/stable/c/f05a0191b90156e539cccc189b9d87ca2a4d9305"
        },
        {
          "url": "https://git.kernel.org/stable/c/b291d147d0268e93ad866f8bc820ea14497abc9b"
        },
        {
          "url": "https://git.kernel.org/stable/c/16bcbfb56d759c25665f786e33ec633b9508a08f"
        },
        {
          "url": "https://git.kernel.org/stable/c/c097bd5a59162156d9c2077a2f58732ffbaa9fca"
        },
        {
          "url": "https://git.kernel.org/stable/c/814d3610c4ce86e8cf285b2cdac0057a42e82de5"
        },
        {
          "url": "https://git.kernel.org/stable/c/99154581b05c8fb22607afb7c3d66c1bace6aa5d"
        }
      ],
      "title": "scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47203",
    "datePublished": "2024-04-10T18:56:37.066Z",
    "dateReserved": "2024-03-25T09:12:14.117Z",
    "dateUpdated": "2025-05-04T07:06:19.424Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48648 (GCVE-0-2022-48648)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: sfc: fix null pointer dereference in efx_hard_start_xmit Trying to get the channel from the tx_queue variable here is wrong because we can only be here if tx_queue is NULL, so we shouldn't dereference it. As the above comment in the code says, this is very unlikely to happen, but it's wrong anyway so let's fix it. I hit this issue because of a different bug that caused tx_queue to be NULL. If that happens, this is the error message that we get here: BUG: unable to handle kernel NULL pointer dereference at 0000000000000020 [...] RIP: 0010:efx_hard_start_xmit+0x153/0x170 [sfc]

References

►

URL

Tags

	https://git.kernel.org/stable/c/b3b41d4d95d3822b2e459ecbc80d030ea6aec5e7
	https://git.kernel.org/stable/c/8547c7bfc0617e7184e4da65b9b96681fcfe9998
	https://git.kernel.org/stable/c/b3b952168ee1f220ba729fa100fd9d5aa752eb03
	https://git.kernel.org/stable/c/0a242eb2913a4aa3d6fbdb86559f27628e9466f3

Impacted products

Vendor

Product

Version

►

Linux

Version: 12804793b17c0e19115a90d98f2f3df0cb79e233
Version: 12804793b17c0e19115a90d98f2f3df0cb79e233
Version: 12804793b17c0e19115a90d98f2f3df0cb79e233
Version: 12804793b17c0e19115a90d98f2f3df0cb79e233

Linux

Version: 5.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48648",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:40:59.005173Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-21T21:24:43.643Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.597Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b3b41d4d95d3822b2e459ecbc80d030ea6aec5e7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8547c7bfc0617e7184e4da65b9b96681fcfe9998"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b3b952168ee1f220ba729fa100fd9d5aa752eb03"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0a242eb2913a4aa3d6fbdb86559f27628e9466f3"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/sfc/tx.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b3b41d4d95d3822b2e459ecbc80d030ea6aec5e7",
              "status": "affected",
              "version": "12804793b17c0e19115a90d98f2f3df0cb79e233",
              "versionType": "git"
            },
            {
              "lessThan": "8547c7bfc0617e7184e4da65b9b96681fcfe9998",
              "status": "affected",
              "version": "12804793b17c0e19115a90d98f2f3df0cb79e233",
              "versionType": "git"
            },
            {
              "lessThan": "b3b952168ee1f220ba729fa100fd9d5aa752eb03",
              "status": "affected",
              "version": "12804793b17c0e19115a90d98f2f3df0cb79e233",
              "versionType": "git"
            },
            {
              "lessThan": "0a242eb2913a4aa3d6fbdb86559f27628e9466f3",
              "status": "affected",
              "version": "12804793b17c0e19115a90d98f2f3df0cb79e233",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/sfc/tx.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsfc: fix null pointer dereference in efx_hard_start_xmit\n\nTrying to get the channel from the tx_queue variable here is wrong\nbecause we can only be here if tx_queue is NULL, so we shouldn\u0027t\ndereference it. As the above comment in the code says, this is very\nunlikely to happen, but it\u0027s wrong anyway so let\u0027s fix it.\n\nI hit this issue because of a different bug that caused tx_queue to be\nNULL. If that happens, this is the error message that we get here:\n  BUG: unable to handle kernel NULL pointer dereference at 0000000000000020\n  [...]\n  RIP: 0010:efx_hard_start_xmit+0x153/0x170 [sfc]"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:31.917Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b3b41d4d95d3822b2e459ecbc80d030ea6aec5e7"
        },
        {
          "url": "https://git.kernel.org/stable/c/8547c7bfc0617e7184e4da65b9b96681fcfe9998"
        },
        {
          "url": "https://git.kernel.org/stable/c/b3b952168ee1f220ba729fa100fd9d5aa752eb03"
        },
        {
          "url": "https://git.kernel.org/stable/c/0a242eb2913a4aa3d6fbdb86559f27628e9466f3"
        }
      ],
      "title": "sfc: fix null pointer dereference in efx_hard_start_xmit",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48648",
    "datePublished": "2024-04-28T13:00:28.994Z",
    "dateReserved": "2024-02-25T13:44:28.316Z",
    "dateUpdated": "2025-05-04T08:20:31.917Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26816 (GCVE-0-2024-26816)

Vulnerability from cvelistv5

Published

2024-04-10 13:53

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: x86, relocs: Ignore relocations in .notes section When building with CONFIG_XEN_PV=y, .text symbols are emitted into the .notes section so that Xen can find the "startup_xen" entry point. This information is used prior to booting the kernel, so relocations are not useful. In fact, performing relocations against the .notes section means that the KASLR base is exposed since /sys/kernel/notes is world-readable. To avoid leaking the KASLR base without breaking unprivileged tools that are expecting to read /sys/kernel/notes, skip performing relocations in the .notes section. The values readable in .notes are then identical to those found in System.map.

References

►

URL

Tags

	https://git.kernel.org/stable/c/13edb509abc91c72152a11baaf0e7c060a312e03
	https://git.kernel.org/stable/c/52018aa146e3cf76569a9b1e6e49a2b7c8d4a088
	https://git.kernel.org/stable/c/a4e7ff1a74274e59a2de9bb57236542aa990d20a
	https://git.kernel.org/stable/c/c7cff9780297d55d97ad068b68b703cfe53ef9af
	https://git.kernel.org/stable/c/47635b112a64b7b208224962471e7e42f110e723
	https://git.kernel.org/stable/c/af2a9f98d884205145fd155304a6955822ccca1c
	https://git.kernel.org/stable/c/ae7079238f6faf1b94accfccf334e98b46a0c0aa
	https://git.kernel.org/stable/c/5cb59db49c9c0fccfd33b2209af4f7ae3c6ddf40
	https://git.kernel.org/stable/c/aaa8736370db1a78f0e8434344a484f9fd20be3b

Impacted products

Vendor

Product

Version

►

Linux

Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045
Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045
Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045
Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045
Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045
Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045
Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045
Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045
Version: 5ead97c84fa7d63a6a7a2f4e9f18f452bd109045

Linux

Version: 2.6.23

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26816",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-21T16:05:35.963352Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-21T16:05:55.498Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.600Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/13edb509abc91c72152a11baaf0e7c060a312e03"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/52018aa146e3cf76569a9b1e6e49a2b7c8d4a088"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a4e7ff1a74274e59a2de9bb57236542aa990d20a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c7cff9780297d55d97ad068b68b703cfe53ef9af"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/47635b112a64b7b208224962471e7e42f110e723"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/af2a9f98d884205145fd155304a6955822ccca1c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ae7079238f6faf1b94accfccf334e98b46a0c0aa"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5cb59db49c9c0fccfd33b2209af4f7ae3c6ddf40"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/aaa8736370db1a78f0e8434344a484f9fd20be3b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "arch/x86/tools/relocs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "13edb509abc91c72152a11baaf0e7c060a312e03",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            },
            {
              "lessThan": "52018aa146e3cf76569a9b1e6e49a2b7c8d4a088",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            },
            {
              "lessThan": "a4e7ff1a74274e59a2de9bb57236542aa990d20a",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            },
            {
              "lessThan": "c7cff9780297d55d97ad068b68b703cfe53ef9af",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            },
            {
              "lessThan": "47635b112a64b7b208224962471e7e42f110e723",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            },
            {
              "lessThan": "af2a9f98d884205145fd155304a6955822ccca1c",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            },
            {
              "lessThan": "ae7079238f6faf1b94accfccf334e98b46a0c0aa",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            },
            {
              "lessThan": "5cb59db49c9c0fccfd33b2209af4f7ae3c6ddf40",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            },
            {
              "lessThan": "aaa8736370db1a78f0e8434344a484f9fd20be3b",
              "status": "affected",
              "version": "5ead97c84fa7d63a6a7a2f4e9f18f452bd109045",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "arch/x86/tools/relocs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.23"
            },
            {
              "lessThan": "2.6.23",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.23",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86, relocs: Ignore relocations in .notes section\n\nWhen building with CONFIG_XEN_PV=y, .text symbols are emitted into\nthe .notes section so that Xen can find the \"startup_xen\" entry point.\nThis information is used prior to booting the kernel, so relocations\nare not useful. In fact, performing relocations against the .notes\nsection means that the KASLR base is exposed since /sys/kernel/notes\nis world-readable.\n\nTo avoid leaking the KASLR base without breaking unprivileged tools that\nare expecting to read /sys/kernel/notes, skip performing relocations in\nthe .notes section. The values readable in .notes are then identical to\nthose found in System.map."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:13.209Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/13edb509abc91c72152a11baaf0e7c060a312e03"
        },
        {
          "url": "https://git.kernel.org/stable/c/52018aa146e3cf76569a9b1e6e49a2b7c8d4a088"
        },
        {
          "url": "https://git.kernel.org/stable/c/a4e7ff1a74274e59a2de9bb57236542aa990d20a"
        },
        {
          "url": "https://git.kernel.org/stable/c/c7cff9780297d55d97ad068b68b703cfe53ef9af"
        },
        {
          "url": "https://git.kernel.org/stable/c/47635b112a64b7b208224962471e7e42f110e723"
        },
        {
          "url": "https://git.kernel.org/stable/c/af2a9f98d884205145fd155304a6955822ccca1c"
        },
        {
          "url": "https://git.kernel.org/stable/c/ae7079238f6faf1b94accfccf334e98b46a0c0aa"
        },
        {
          "url": "https://git.kernel.org/stable/c/5cb59db49c9c0fccfd33b2209af4f7ae3c6ddf40"
        },
        {
          "url": "https://git.kernel.org/stable/c/aaa8736370db1a78f0e8434344a484f9fd20be3b"
        }
      ],
      "title": "x86, relocs: Ignore relocations in .notes section",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26816",
    "datePublished": "2024-04-10T13:53:49.492Z",
    "dateReserved": "2024-02-19T14:20:24.180Z",
    "dateUpdated": "2025-05-04T08:57:13.209Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26872 (GCVE-0-2024-26872)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Write in srpt_refresh_port(). This seems to be because an event handler is registered before the srpt device is fully setup and a race condition upon error may leave a partially setup event handler in place. Instead, only register the event handler after srpt device initialization is complete.

References

►

URL

Tags

	https://git.kernel.org/stable/c/bdd895e0190c464f54f84579e7535d80276f0fc5
	https://git.kernel.org/stable/c/6413e78086caf7bf15639923740da0d91fdfd090
	https://git.kernel.org/stable/c/e362d007294955a4fb929e1c8978154a64efdcb6
	https://git.kernel.org/stable/c/85570b91e4820a0db9d9432098778cafafa7d217
	https://git.kernel.org/stable/c/7104a00fa37ae898a827381f1161fa3286c8b346
	https://git.kernel.org/stable/c/ec77fa12da41260c6bf9e060b89234b980c5130f
	https://git.kernel.org/stable/c/c21a8870c98611e8f892511825c9607f1e2cd456

Impacted products

Vendor

Product

Version

►

Linux

Version: a42d985bd5b234da8b61347a78dc3057bf7bb94d
Version: a42d985bd5b234da8b61347a78dc3057bf7bb94d
Version: a42d985bd5b234da8b61347a78dc3057bf7bb94d
Version: a42d985bd5b234da8b61347a78dc3057bf7bb94d
Version: a42d985bd5b234da8b61347a78dc3057bf7bb94d
Version: a42d985bd5b234da8b61347a78dc3057bf7bb94d
Version: a42d985bd5b234da8b61347a78dc3057bf7bb94d

Linux

Version: 3.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26872",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T19:53:54.471645Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:48:33.197Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:04.204Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bdd895e0190c464f54f84579e7535d80276f0fc5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6413e78086caf7bf15639923740da0d91fdfd090"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e362d007294955a4fb929e1c8978154a64efdcb6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/85570b91e4820a0db9d9432098778cafafa7d217"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7104a00fa37ae898a827381f1161fa3286c8b346"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ec77fa12da41260c6bf9e060b89234b980c5130f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c21a8870c98611e8f892511825c9607f1e2cd456"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/ulp/srpt/ib_srpt.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "bdd895e0190c464f54f84579e7535d80276f0fc5",
              "status": "affected",
              "version": "a42d985bd5b234da8b61347a78dc3057bf7bb94d",
              "versionType": "git"
            },
            {
              "lessThan": "6413e78086caf7bf15639923740da0d91fdfd090",
              "status": "affected",
              "version": "a42d985bd5b234da8b61347a78dc3057bf7bb94d",
              "versionType": "git"
            },
            {
              "lessThan": "e362d007294955a4fb929e1c8978154a64efdcb6",
              "status": "affected",
              "version": "a42d985bd5b234da8b61347a78dc3057bf7bb94d",
              "versionType": "git"
            },
            {
              "lessThan": "85570b91e4820a0db9d9432098778cafafa7d217",
              "status": "affected",
              "version": "a42d985bd5b234da8b61347a78dc3057bf7bb94d",
              "versionType": "git"
            },
            {
              "lessThan": "7104a00fa37ae898a827381f1161fa3286c8b346",
              "status": "affected",
              "version": "a42d985bd5b234da8b61347a78dc3057bf7bb94d",
              "versionType": "git"
            },
            {
              "lessThan": "ec77fa12da41260c6bf9e060b89234b980c5130f",
              "status": "affected",
              "version": "a42d985bd5b234da8b61347a78dc3057bf7bb94d",
              "versionType": "git"
            },
            {
              "lessThan": "c21a8870c98611e8f892511825c9607f1e2cd456",
              "status": "affected",
              "version": "a42d985bd5b234da8b61347a78dc3057bf7bb94d",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/ulp/srpt/ib_srpt.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.3"
            },
            {
              "lessThan": "3.3",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "3.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "3.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "3.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "3.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "3.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "3.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "3.3",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/srpt: Do not register event handler until srpt device is fully setup\n\nUpon rare occasions, KASAN reports a use-after-free Write\nin srpt_refresh_port().\n\nThis seems to be because an event handler is registered before the\nsrpt device is fully setup and a race condition upon error may leave a\npartially setup event handler in place.\n\nInstead, only register the event handler after srpt device initialization\nis complete."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:32.678Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/bdd895e0190c464f54f84579e7535d80276f0fc5"
        },
        {
          "url": "https://git.kernel.org/stable/c/6413e78086caf7bf15639923740da0d91fdfd090"
        },
        {
          "url": "https://git.kernel.org/stable/c/e362d007294955a4fb929e1c8978154a64efdcb6"
        },
        {
          "url": "https://git.kernel.org/stable/c/85570b91e4820a0db9d9432098778cafafa7d217"
        },
        {
          "url": "https://git.kernel.org/stable/c/7104a00fa37ae898a827381f1161fa3286c8b346"
        },
        {
          "url": "https://git.kernel.org/stable/c/ec77fa12da41260c6bf9e060b89234b980c5130f"
        },
        {
          "url": "https://git.kernel.org/stable/c/c21a8870c98611e8f892511825c9607f1e2cd456"
        }
      ],
      "title": "RDMA/srpt: Do not register event handler until srpt device is fully setup",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26872",
    "datePublished": "2024-04-17T10:27:32.025Z",
    "dateReserved": "2024-02-19T14:20:24.184Z",
    "dateUpdated": "2025-05-04T08:58:32.678Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26861 (GCVE-0-2024-26861)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 12:55

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: wireguard: receive: annotate data-race around receiving_counter.counter Syzkaller with KCSAN identified a data-race issue when accessing keypair->receiving_counter.counter. Use READ_ONCE() and WRITE_ONCE() annotations to mark the data race as intentional. BUG: KCSAN: data-race in wg_packet_decrypt_worker / wg_packet_rx_poll write to 0xffff888107765888 of 8 bytes by interrupt on cpu 0: counter_validate drivers/net/wireguard/receive.c:321 [inline] wg_packet_rx_poll+0x3ac/0xf00 drivers/net/wireguard/receive.c:461 __napi_poll+0x60/0x3b0 net/core/dev.c:6536 napi_poll net/core/dev.c:6605 [inline] net_rx_action+0x32b/0x750 net/core/dev.c:6738 __do_softirq+0xc4/0x279 kernel/softirq.c:553 do_softirq+0x5e/0x90 kernel/softirq.c:454 __local_bh_enable_ip+0x64/0x70 kernel/softirq.c:381 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline] _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210 spin_unlock_bh include/linux/spinlock.h:396 [inline] ptr_ring_consume_bh include/linux/ptr_ring.h:367 [inline] wg_packet_decrypt_worker+0x6c5/0x700 drivers/net/wireguard/receive.c:499 process_one_work kernel/workqueue.c:2633 [inline] ... read to 0xffff888107765888 of 8 bytes by task 3196 on cpu 1: decrypt_packet drivers/net/wireguard/receive.c:252 [inline] wg_packet_decrypt_worker+0x220/0x700 drivers/net/wireguard/receive.c:501 process_one_work kernel/workqueue.c:2633 [inline] process_scheduled_works+0x5b8/0xa30 kernel/workqueue.c:2706 worker_thread+0x525/0x730 kernel/workqueue.c:2787 ...

References

►

URL

Tags

	https://git.kernel.org/stable/c/f87884e0dffd61b47e58bc6e1e2f6843c212b0cc
	https://git.kernel.org/stable/c/d691be84ab898cf136a35176eaf2f8fc116563f0
	https://git.kernel.org/stable/c/45a83b220c83e3c326513269afbf69ae6fc65cce
	https://git.kernel.org/stable/c/78739d72f16b2d7d549f713f1dfebd678d32484b
	https://git.kernel.org/stable/c/3f94da807fe1668b9830f0eefbbf7e887b0a7bc6
	https://git.kernel.org/stable/c/fdf16de078a97bf14bb8ee2b8d47cc3d3ead09ed
	https://git.kernel.org/stable/c/bba045dc4d996d03dce6fe45726e78a1a1f6d4c3

Impacted products

Vendor

Product

Version

►

Linux

Version: a9e90d9931f3a474f04bab782ccd9d77904941e9
Version: a9e90d9931f3a474f04bab782ccd9d77904941e9
Version: a9e90d9931f3a474f04bab782ccd9d77904941e9
Version: a9e90d9931f3a474f04bab782ccd9d77904941e9
Version: a9e90d9931f3a474f04bab782ccd9d77904941e9
Version: a9e90d9931f3a474f04bab782ccd9d77904941e9
Version: a9e90d9931f3a474f04bab782ccd9d77904941e9
Version: 4a7939808afdc57ecaeb72d049e2985321a1e44e

Linux

Version: 5.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:04.156Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f87884e0dffd61b47e58bc6e1e2f6843c212b0cc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d691be84ab898cf136a35176eaf2f8fc116563f0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/45a83b220c83e3c326513269afbf69ae6fc65cce"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/78739d72f16b2d7d549f713f1dfebd678d32484b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3f94da807fe1668b9830f0eefbbf7e887b0a7bc6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fdf16de078a97bf14bb8ee2b8d47cc3d3ead09ed"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bba045dc4d996d03dce6fe45726e78a1a1f6d4c3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26861",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:48:32.233125Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:26.632Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireguard/receive.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f87884e0dffd61b47e58bc6e1e2f6843c212b0cc",
              "status": "affected",
              "version": "a9e90d9931f3a474f04bab782ccd9d77904941e9",
              "versionType": "git"
            },
            {
              "lessThan": "d691be84ab898cf136a35176eaf2f8fc116563f0",
              "status": "affected",
              "version": "a9e90d9931f3a474f04bab782ccd9d77904941e9",
              "versionType": "git"
            },
            {
              "lessThan": "45a83b220c83e3c326513269afbf69ae6fc65cce",
              "status": "affected",
              "version": "a9e90d9931f3a474f04bab782ccd9d77904941e9",
              "versionType": "git"
            },
            {
              "lessThan": "78739d72f16b2d7d549f713f1dfebd678d32484b",
              "status": "affected",
              "version": "a9e90d9931f3a474f04bab782ccd9d77904941e9",
              "versionType": "git"
            },
            {
              "lessThan": "3f94da807fe1668b9830f0eefbbf7e887b0a7bc6",
              "status": "affected",
              "version": "a9e90d9931f3a474f04bab782ccd9d77904941e9",
              "versionType": "git"
            },
            {
              "lessThan": "fdf16de078a97bf14bb8ee2b8d47cc3d3ead09ed",
              "status": "affected",
              "version": "a9e90d9931f3a474f04bab782ccd9d77904941e9",
              "versionType": "git"
            },
            {
              "lessThan": "bba045dc4d996d03dce6fe45726e78a1a1f6d4c3",
              "status": "affected",
              "version": "a9e90d9931f3a474f04bab782ccd9d77904941e9",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "4a7939808afdc57ecaeb72d049e2985321a1e44e",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireguard/receive.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.7"
            },
            {
              "lessThan": "5.7",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.6.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwireguard: receive: annotate data-race around receiving_counter.counter\n\nSyzkaller with KCSAN identified a data-race issue when accessing\nkeypair-\u003ereceiving_counter.counter. Use READ_ONCE() and WRITE_ONCE()\nannotations to mark the data race as intentional.\n\n    BUG: KCSAN: data-race in wg_packet_decrypt_worker / wg_packet_rx_poll\n\n    write to 0xffff888107765888 of 8 bytes by interrupt on cpu 0:\n     counter_validate drivers/net/wireguard/receive.c:321 [inline]\n     wg_packet_rx_poll+0x3ac/0xf00 drivers/net/wireguard/receive.c:461\n     __napi_poll+0x60/0x3b0 net/core/dev.c:6536\n     napi_poll net/core/dev.c:6605 [inline]\n     net_rx_action+0x32b/0x750 net/core/dev.c:6738\n     __do_softirq+0xc4/0x279 kernel/softirq.c:553\n     do_softirq+0x5e/0x90 kernel/softirq.c:454\n     __local_bh_enable_ip+0x64/0x70 kernel/softirq.c:381\n     __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:167 [inline]\n     _raw_spin_unlock_bh+0x36/0x40 kernel/locking/spinlock.c:210\n     spin_unlock_bh include/linux/spinlock.h:396 [inline]\n     ptr_ring_consume_bh include/linux/ptr_ring.h:367 [inline]\n     wg_packet_decrypt_worker+0x6c5/0x700 drivers/net/wireguard/receive.c:499\n     process_one_work kernel/workqueue.c:2633 [inline]\n     ...\n\n    read to 0xffff888107765888 of 8 bytes by task 3196 on cpu 1:\n     decrypt_packet drivers/net/wireguard/receive.c:252 [inline]\n     wg_packet_decrypt_worker+0x220/0x700 drivers/net/wireguard/receive.c:501\n     process_one_work kernel/workqueue.c:2633 [inline]\n     process_scheduled_works+0x5b8/0xa30 kernel/workqueue.c:2706\n     worker_thread+0x525/0x730 kernel/workqueue.c:2787\n     ..."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:55:00.752Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f87884e0dffd61b47e58bc6e1e2f6843c212b0cc"
        },
        {
          "url": "https://git.kernel.org/stable/c/d691be84ab898cf136a35176eaf2f8fc116563f0"
        },
        {
          "url": "https://git.kernel.org/stable/c/45a83b220c83e3c326513269afbf69ae6fc65cce"
        },
        {
          "url": "https://git.kernel.org/stable/c/78739d72f16b2d7d549f713f1dfebd678d32484b"
        },
        {
          "url": "https://git.kernel.org/stable/c/3f94da807fe1668b9830f0eefbbf7e887b0a7bc6"
        },
        {
          "url": "https://git.kernel.org/stable/c/fdf16de078a97bf14bb8ee2b8d47cc3d3ead09ed"
        },
        {
          "url": "https://git.kernel.org/stable/c/bba045dc4d996d03dce6fe45726e78a1a1f6d4c3"
        }
      ],
      "title": "wireguard: receive: annotate data-race around receiving_counter.counter",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26861",
    "datePublished": "2024-04-17T10:27:24.980Z",
    "dateReserved": "2024-02-19T14:20:24.184Z",
    "dateUpdated": "2025-05-04T12:55:00.752Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52589 (GCVE-0-2023-52589)

Vulnerability from cvelistv5

Published

2024-03-06 06:45

Modified

2025-05-04 07:39

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: media: rkisp1: Fix IRQ disable race issue In rkisp1_isp_stop() and rkisp1_csi_disable() the driver masks the interrupts and then apparently assumes that the interrupt handler won't be running, and proceeds in the stop procedure. This is not the case, as the interrupt handler can already be running, which would lead to the ISP being disabled while the interrupt handler handling a captured frame. This brings up two issues: 1) the ISP could be powered off while the interrupt handler is still running and accessing registers, leading to board lockup, and 2) the interrupt handler code and the code that disables the streaming might do things that conflict. It is not clear to me if 2) causes a real issue, but 1) can be seen with a suitable delay (or printk in my case) in the interrupt handler, leading to board lockup.

References

►

URL

Tags

	https://git.kernel.org/stable/c/bf808f58681cab64c81cd814551814fd34e540fe
	https://git.kernel.org/stable/c/fab483438342984f2a315fe13c882a80f0f7e545
	https://git.kernel.org/stable/c/7bb1a2822aa2c2de4e09bf7c56dd93bd532f1fa7
	https://git.kernel.org/stable/c/870565f063a58576e8a4529f122cac4325c6b395

Impacted products

Vendor

Product

Version

►

Linux

Version: 25cb42af9ffabffec499e9e69e2fd3797774ce5b
Version: 25cb42af9ffabffec499e9e69e2fd3797774ce5b
Version: 25cb42af9ffabffec499e9e69e2fd3797774ce5b
Version: 25cb42af9ffabffec499e9e69e2fd3797774ce5b

Linux

Version: 5.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52589",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-06T16:44:57.904701Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:23:45.624Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.211Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bf808f58681cab64c81cd814551814fd34e540fe"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fab483438342984f2a315fe13c882a80f0f7e545"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7bb1a2822aa2c2de4e09bf7c56dd93bd532f1fa7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/870565f063a58576e8a4529f122cac4325c6b395"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/media/platform/rockchip/rkisp1/rkisp1-csi.c",
            "drivers/media/platform/rockchip/rkisp1/rkisp1-isp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "bf808f58681cab64c81cd814551814fd34e540fe",
              "status": "affected",
              "version": "25cb42af9ffabffec499e9e69e2fd3797774ce5b",
              "versionType": "git"
            },
            {
              "lessThan": "fab483438342984f2a315fe13c882a80f0f7e545",
              "status": "affected",
              "version": "25cb42af9ffabffec499e9e69e2fd3797774ce5b",
              "versionType": "git"
            },
            {
              "lessThan": "7bb1a2822aa2c2de4e09bf7c56dd93bd532f1fa7",
              "status": "affected",
              "version": "25cb42af9ffabffec499e9e69e2fd3797774ce5b",
              "versionType": "git"
            },
            {
              "lessThan": "870565f063a58576e8a4529f122cac4325c6b395",
              "status": "affected",
              "version": "25cb42af9ffabffec499e9e69e2fd3797774ce5b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/media/platform/rockchip/rkisp1/rkisp1-csi.c",
            "drivers/media/platform/rockchip/rkisp1/rkisp1-isp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.6"
            },
            {
              "lessThan": "5.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.77",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.77",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.16",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.4",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: rkisp1: Fix IRQ disable race issue\n\nIn rkisp1_isp_stop() and rkisp1_csi_disable() the driver masks the\ninterrupts and then apparently assumes that the interrupt handler won\u0027t\nbe running, and proceeds in the stop procedure. This is not the case, as\nthe interrupt handler can already be running, which would lead to the\nISP being disabled while the interrupt handler handling a captured\nframe.\n\nThis brings up two issues: 1) the ISP could be powered off while the\ninterrupt handler is still running and accessing registers, leading to\nboard lockup, and 2) the interrupt handler code and the code that\ndisables the streaming might do things that conflict.\n\nIt is not clear to me if 2) causes a real issue, but 1) can be seen with\na suitable delay (or printk in my case) in the interrupt handler,\nleading to board lockup."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:39:20.368Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/bf808f58681cab64c81cd814551814fd34e540fe"
        },
        {
          "url": "https://git.kernel.org/stable/c/fab483438342984f2a315fe13c882a80f0f7e545"
        },
        {
          "url": "https://git.kernel.org/stable/c/7bb1a2822aa2c2de4e09bf7c56dd93bd532f1fa7"
        },
        {
          "url": "https://git.kernel.org/stable/c/870565f063a58576e8a4529f122cac4325c6b395"
        }
      ],
      "title": "media: rkisp1: Fix IRQ disable race issue",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52589",
    "datePublished": "2024-03-06T06:45:22.442Z",
    "dateReserved": "2024-03-02T21:55:42.570Z",
    "dateUpdated": "2025-05-04T07:39:20.368Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27059 (GCVE-0-2024-27059)

Vulnerability from cvelistv5

Published

2024-05-01 13:00

Modified

2025-05-04 09:03

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command The isd200 sub-driver in usb-storage uses the HEADS and SECTORS values in the ATA ID information to calculate cylinder and head values when creating a CDB for READ or WRITE commands. The calculation involves division and modulus operations, which will cause a crash if either of these values is 0. While this never happens with a genuine device, it could happen with a flawed or subversive emulation, as reported by the syzbot fuzzer. Protect against this possibility by refusing to bind to the device if either the ATA_ID_HEADS or ATA_ID_SECTORS value in the device's ID information is 0. This requires isd200_Initialization() to return a negative error code when initialization fails; currently it always returns 0 (even when there is an error).

References

►

URL

Tags

	https://git.kernel.org/stable/c/9968c701cba7eda42e5f0052b040349d6222ae34
	https://git.kernel.org/stable/c/eb7b01ca778170654e1c76950024270ba74b121f
	https://git.kernel.org/stable/c/284fb1003d5da111019b9e0bf99b084fd71ac133
	https://git.kernel.org/stable/c/6c1f36d92c0a8799569055012665d2bb066fb964
	https://git.kernel.org/stable/c/f42ba916689f5c7b1642092266d2f53cf527aaaa
	https://git.kernel.org/stable/c/871fd7b10b56d280990b7e754f43d888382ca325
	https://git.kernel.org/stable/c/3a67d4ab9e730361d183086dfb0ddd8c61f01636
	https://git.kernel.org/stable/c/014bcf41d946b36a8f0b8e9b5d9529efbb822f49

Impacted products

Vendor

Product

Version

►

Linux

Version: 2.6.12

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27059",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:38:40.955330Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:46:17.539Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.855Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9968c701cba7eda42e5f0052b040349d6222ae34"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/eb7b01ca778170654e1c76950024270ba74b121f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/284fb1003d5da111019b9e0bf99b084fd71ac133"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6c1f36d92c0a8799569055012665d2bb066fb964"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f42ba916689f5c7b1642092266d2f53cf527aaaa"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/871fd7b10b56d280990b7e754f43d888382ca325"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3a67d4ab9e730361d183086dfb0ddd8c61f01636"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/014bcf41d946b36a8f0b8e9b5d9529efbb822f49"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/storage/isd200.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "9968c701cba7eda42e5f0052b040349d6222ae34",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "eb7b01ca778170654e1c76950024270ba74b121f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "284fb1003d5da111019b9e0bf99b084fd71ac133",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6c1f36d92c0a8799569055012665d2bb066fb964",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f42ba916689f5c7b1642092266d2f53cf527aaaa",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "871fd7b10b56d280990b7e754f43d888382ca325",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "3a67d4ab9e730361d183086dfb0ddd8c61f01636",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "014bcf41d946b36a8f0b8e9b5d9529efbb822f49",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/storage/isd200.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.12"
            },
            {
              "lessThan": "2.6.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.312",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.312",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: usb-storage: Prevent divide-by-0 error in isd200_ata_command\n\nThe isd200 sub-driver in usb-storage uses the HEADS and SECTORS values\nin the ATA ID information to calculate cylinder and head values when\ncreating a CDB for READ or WRITE commands.  The calculation involves\ndivision and modulus operations, which will cause a crash if either of\nthese values is 0.  While this never happens with a genuine device, it\ncould happen with a flawed or subversive emulation, as reported by the\nsyzbot fuzzer.\n\nProtect against this possibility by refusing to bind to the device if\neither the ATA_ID_HEADS or ATA_ID_SECTORS value in the device\u0027s ID\ninformation is 0.  This requires isd200_Initialization() to return a\nnegative error code when initialization fails; currently it always\nreturns 0 (even when there is an error)."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:03:19.394Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/9968c701cba7eda42e5f0052b040349d6222ae34"
        },
        {
          "url": "https://git.kernel.org/stable/c/eb7b01ca778170654e1c76950024270ba74b121f"
        },
        {
          "url": "https://git.kernel.org/stable/c/284fb1003d5da111019b9e0bf99b084fd71ac133"
        },
        {
          "url": "https://git.kernel.org/stable/c/6c1f36d92c0a8799569055012665d2bb066fb964"
        },
        {
          "url": "https://git.kernel.org/stable/c/f42ba916689f5c7b1642092266d2f53cf527aaaa"
        },
        {
          "url": "https://git.kernel.org/stable/c/871fd7b10b56d280990b7e754f43d888382ca325"
        },
        {
          "url": "https://git.kernel.org/stable/c/3a67d4ab9e730361d183086dfb0ddd8c61f01636"
        },
        {
          "url": "https://git.kernel.org/stable/c/014bcf41d946b36a8f0b8e9b5d9529efbb822f49"
        }
      ],
      "title": "USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27059",
    "datePublished": "2024-05-01T13:00:10.571Z",
    "dateReserved": "2024-02-19T14:20:24.214Z",
    "dateUpdated": "2025-05-04T09:03:19.394Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48673 (GCVE-0-2022-48673)

Vulnerability from cvelistv5

Published

2024-05-03 14:51

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net/smc: Fix possible access to freed memory in link clear After modifying the QP to the Error state, all RX WR would be completed with WC in IB_WC_WR_FLUSH_ERR status. Current implementation does not wait for it is done, but destroy the QP and free the link group directly. So there is a risk that accessing the freed memory in tasklet context. Here is a crash example: BUG: unable to handle page fault for address: ffffffff8f220860 #PF: supervisor write access in kernel mode #PF: error_code(0x0002) - not-present page PGD f7300e067 P4D f7300e067 PUD f7300f063 PMD 8c4e45063 PTE 800ffff08c9df060 Oops: 0002 [#1] SMP PTI CPU: 1 PID: 0 Comm: swapper/1 Kdump: loaded Tainted: G S OE 5.10.0-0607+ #23 Hardware name: Inspur NF5280M4/YZMB-00689-101, BIOS 4.1.20 07/09/2018 RIP: 0010:native_queued_spin_lock_slowpath+0x176/0x1b0 Code: f3 90 48 8b 32 48 85 f6 74 f6 eb d5 c1 ee 12 83 e0 03 83 ee 01 48 c1 e0 05 48 63 f6 48 05 00 c8 02 00 48 03 04 f5 00 09 98 8e <48> 89 10 8b 42 08 85 c0 75 09 f3 90 8b 42 08 85 c0 74 f7 48 8b 32 RSP: 0018:ffffb3b6c001ebd8 EFLAGS: 00010086 RAX: ffffffff8f220860 RBX: 0000000000000246 RCX: 0000000000080000 RDX: ffff91db1f86c800 RSI: 000000000000173c RDI: ffff91db62bace00 RBP: ffff91db62bacc00 R08: 0000000000000000 R09: c00000010000028b R10: 0000000000055198 R11: ffffb3b6c001ea58 R12: ffff91db80e05010 R13: 000000000000000a R14: 0000000000000006 R15: 0000000000000040 FS: 0000000000000000(0000) GS:ffff91db1f840000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: ffffffff8f220860 CR3: 00000001f9580004 CR4: 00000000003706e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: <IRQ> _raw_spin_lock_irqsave+0x30/0x40 mlx5_ib_poll_cq+0x4c/0xc50 [mlx5_ib] smc_wr_rx_tasklet_fn+0x56/0xa0 [smc] tasklet_action_common.isra.21+0x66/0x100 __do_softirq+0xd5/0x29c asm_call_irq_on_stack+0x12/0x20 </IRQ> do_softirq_own_stack+0x37/0x40 irq_exit_rcu+0x9d/0xa0 sysvec_call_function_single+0x34/0x80 asm_sysvec_call_function_single+0x12/0x20

References

►

URL

Tags

	https://git.kernel.org/stable/c/89fcb70f1acd6b0bbf2f7bfbf45d7aa75a9bdcde
	https://git.kernel.org/stable/c/e9b1a4f867ae9c1dbd1d71cd09cbdb3239fb4968

Impacted products

Vendor

Product

Version

►

Linux

Version: bd4ad57718cc86d2972a20f9791cd079996a4dd6
Version: bd4ad57718cc86d2972a20f9791cd079996a4dd6

Linux

Version: 4.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48673",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-31T18:55:55.049793Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:35.822Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.722Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/89fcb70f1acd6b0bbf2f7bfbf45d7aa75a9bdcde"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e9b1a4f867ae9c1dbd1d71cd09cbdb3239fb4968"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/smc/smc_core.c",
            "net/smc/smc_core.h",
            "net/smc/smc_wr.c",
            "net/smc/smc_wr.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "89fcb70f1acd6b0bbf2f7bfbf45d7aa75a9bdcde",
              "status": "affected",
              "version": "bd4ad57718cc86d2972a20f9791cd079996a4dd6",
              "versionType": "git"
            },
            {
              "lessThan": "e9b1a4f867ae9c1dbd1d71cd09cbdb3239fb4968",
              "status": "affected",
              "version": "bd4ad57718cc86d2972a20f9791cd079996a4dd6",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/smc/smc_core.c",
            "net/smc/smc_core.h",
            "net/smc/smc_wr.c",
            "net/smc/smc_wr.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.11"
            },
            {
              "lessThan": "4.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: Fix possible access to freed memory in link clear\n\nAfter modifying the QP to the Error state, all RX WR would be completed\nwith WC in IB_WC_WR_FLUSH_ERR status. Current implementation does not\nwait for it is done, but destroy the QP and free the link group directly.\nSo there is a risk that accessing the freed memory in tasklet context.\n\nHere is a crash example:\n\n BUG: unable to handle page fault for address: ffffffff8f220860\n #PF: supervisor write access in kernel mode\n #PF: error_code(0x0002) - not-present page\n PGD f7300e067 P4D f7300e067 PUD f7300f063 PMD 8c4e45063 PTE 800ffff08c9df060\n Oops: 0002 [#1] SMP PTI\n CPU: 1 PID: 0 Comm: swapper/1 Kdump: loaded Tainted: G S         OE     5.10.0-0607+ #23\n Hardware name: Inspur NF5280M4/YZMB-00689-101, BIOS 4.1.20 07/09/2018\n RIP: 0010:native_queued_spin_lock_slowpath+0x176/0x1b0\n Code: f3 90 48 8b 32 48 85 f6 74 f6 eb d5 c1 ee 12 83 e0 03 83 ee 01 48 c1 e0 05 48 63 f6 48 05 00 c8 02 00 48 03 04 f5 00 09 98 8e \u003c48\u003e 89 10 8b 42 08 85 c0 75 09 f3 90 8b 42 08 85 c0 74 f7 48 8b 32\n RSP: 0018:ffffb3b6c001ebd8 EFLAGS: 00010086\n RAX: ffffffff8f220860 RBX: 0000000000000246 RCX: 0000000000080000\n RDX: ffff91db1f86c800 RSI: 000000000000173c RDI: ffff91db62bace00\n RBP: ffff91db62bacc00 R08: 0000000000000000 R09: c00000010000028b\n R10: 0000000000055198 R11: ffffb3b6c001ea58 R12: ffff91db80e05010\n R13: 000000000000000a R14: 0000000000000006 R15: 0000000000000040\n FS:  0000000000000000(0000) GS:ffff91db1f840000(0000) knlGS:0000000000000000\n CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffffffff8f220860 CR3: 00000001f9580004 CR4: 00000000003706e0\n DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n Call Trace:\n  \u003cIRQ\u003e\n  _raw_spin_lock_irqsave+0x30/0x40\n  mlx5_ib_poll_cq+0x4c/0xc50 [mlx5_ib]\n  smc_wr_rx_tasklet_fn+0x56/0xa0 [smc]\n  tasklet_action_common.isra.21+0x66/0x100\n  __do_softirq+0xd5/0x29c\n  asm_call_irq_on_stack+0x12/0x20\n  \u003c/IRQ\u003e\n  do_softirq_own_stack+0x37/0x40\n  irq_exit_rcu+0x9d/0xa0\n  sysvec_call_function_single+0x34/0x80\n  asm_sysvec_call_function_single+0x12/0x20"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:00.335Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/89fcb70f1acd6b0bbf2f7bfbf45d7aa75a9bdcde"
        },
        {
          "url": "https://git.kernel.org/stable/c/e9b1a4f867ae9c1dbd1d71cd09cbdb3239fb4968"
        }
      ],
      "title": "net/smc: Fix possible access to freed memory in link clear",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48673",
    "datePublished": "2024-05-03T14:51:44.955Z",
    "dateReserved": "2024-02-25T13:44:28.321Z",
    "dateUpdated": "2025-05-04T08:21:00.335Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26970 (GCVE-0-2024-26970)

Vulnerability from cvelistv5

Published

2024-05-01 05:19

Modified

2025-05-04 09:01

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gcc-ipq6018: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid possible out-of-bound access when the table is traversed by functions like qcom_find_freq() or qcom_find_freq_floor(). Only compile tested.

References

►

URL

Tags

	https://git.kernel.org/stable/c/ae60e3342296f766f88911d39199f77b05f657a6
	https://git.kernel.org/stable/c/b4527ee3de365a742215773d20f07db3e2c06f3b
	https://git.kernel.org/stable/c/852db52b45ea96dac2720f108e7c7331cd3738bb
	https://git.kernel.org/stable/c/421b135aceace99789c982f6a77ce9476564fb52
	https://git.kernel.org/stable/c/dcb13b5c9ae8743f99a96f392186527c3df89198
	https://git.kernel.org/stable/c/db4066e3ab6b3d918ae2b92734a89c04fe82cc1d
	https://git.kernel.org/stable/c/cdbc6e2d8108bc47895e5a901cfcaf799b00ca8d

Impacted products

Vendor

Product

Version

►

Linux

Version: d9db07f088af01a1080d01de363141b673c7d646
Version: d9db07f088af01a1080d01de363141b673c7d646
Version: d9db07f088af01a1080d01de363141b673c7d646
Version: d9db07f088af01a1080d01de363141b673c7d646
Version: d9db07f088af01a1080d01de363141b673c7d646
Version: d9db07f088af01a1080d01de363141b673c7d646
Version: d9db07f088af01a1080d01de363141b673c7d646

Linux

Version: 5.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "ae60e3342296",
                "status": "affected",
                "version": "d9db07f088af",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "b4527ee3de36",
                "status": "affected",
                "version": "d9db07f088af",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "852db52b45ea",
                "status": "affected",
                "version": "d9db07f088af",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "421b135aceac",
                "status": "affected",
                "version": "d9db07f088af",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "dcb13b5c9ae8",
                "status": "affected",
                "version": "d9db07f088af",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "db4066e3ab6b",
                "status": "affected",
                "version": "d9db07f088af",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "cdbc6e2d8108",
                "status": "affected",
                "version": "d9db07f088af",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "5.6",
                "status": "unaffected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "5.11",
                "status": "unaffected",
                "version": "5.10.215",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "5.16",
                "status": "unaffected",
                "version": "5.15.154",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "6.7",
                "status": "unaffected",
                "version": "6.6.24",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "6.8",
                "status": "unaffected",
                "version": "6.7.12",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "6.9",
                "status": "unaffected",
                "version": "6.8.3",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "unaffected",
                "version": "6.9"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:5.6:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "5.6"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "6.2",
                "status": "unaffected",
                "version": "6.1.84",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26970",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-05T21:08:38.341203Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-02-05T21:08:55.759Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.800Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ae60e3342296f766f88911d39199f77b05f657a6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b4527ee3de365a742215773d20f07db3e2c06f3b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/852db52b45ea96dac2720f108e7c7331cd3738bb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/421b135aceace99789c982f6a77ce9476564fb52"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dcb13b5c9ae8743f99a96f392186527c3df89198"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/db4066e3ab6b3d918ae2b92734a89c04fe82cc1d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cdbc6e2d8108bc47895e5a901cfcaf799b00ca8d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/qcom/gcc-ipq6018.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ae60e3342296f766f88911d39199f77b05f657a6",
              "status": "affected",
              "version": "d9db07f088af01a1080d01de363141b673c7d646",
              "versionType": "git"
            },
            {
              "lessThan": "b4527ee3de365a742215773d20f07db3e2c06f3b",
              "status": "affected",
              "version": "d9db07f088af01a1080d01de363141b673c7d646",
              "versionType": "git"
            },
            {
              "lessThan": "852db52b45ea96dac2720f108e7c7331cd3738bb",
              "status": "affected",
              "version": "d9db07f088af01a1080d01de363141b673c7d646",
              "versionType": "git"
            },
            {
              "lessThan": "421b135aceace99789c982f6a77ce9476564fb52",
              "status": "affected",
              "version": "d9db07f088af01a1080d01de363141b673c7d646",
              "versionType": "git"
            },
            {
              "lessThan": "dcb13b5c9ae8743f99a96f392186527c3df89198",
              "status": "affected",
              "version": "d9db07f088af01a1080d01de363141b673c7d646",
              "versionType": "git"
            },
            {
              "lessThan": "db4066e3ab6b3d918ae2b92734a89c04fe82cc1d",
              "status": "affected",
              "version": "d9db07f088af01a1080d01de363141b673c7d646",
              "versionType": "git"
            },
            {
              "lessThan": "cdbc6e2d8108bc47895e5a901cfcaf799b00ca8d",
              "status": "affected",
              "version": "d9db07f088af01a1080d01de363141b673c7d646",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/qcom/gcc-ipq6018.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.6"
            },
            {
              "lessThan": "5.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: qcom: gcc-ipq6018: fix terminating of frequency table arrays\n\nThe frequency table arrays are supposed to be terminated with an\nempty element. Add such entry to the end of the arrays where it\nis missing in order to avoid possible out-of-bound access when\nthe table is traversed by functions like qcom_find_freq() or\nqcom_find_freq_floor().\n\nOnly compile tested."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:01:06.578Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ae60e3342296f766f88911d39199f77b05f657a6"
        },
        {
          "url": "https://git.kernel.org/stable/c/b4527ee3de365a742215773d20f07db3e2c06f3b"
        },
        {
          "url": "https://git.kernel.org/stable/c/852db52b45ea96dac2720f108e7c7331cd3738bb"
        },
        {
          "url": "https://git.kernel.org/stable/c/421b135aceace99789c982f6a77ce9476564fb52"
        },
        {
          "url": "https://git.kernel.org/stable/c/dcb13b5c9ae8743f99a96f392186527c3df89198"
        },
        {
          "url": "https://git.kernel.org/stable/c/db4066e3ab6b3d918ae2b92734a89c04fe82cc1d"
        },
        {
          "url": "https://git.kernel.org/stable/c/cdbc6e2d8108bc47895e5a901cfcaf799b00ca8d"
        }
      ],
      "title": "clk: qcom: gcc-ipq6018: fix terminating of frequency table arrays",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26970",
    "datePublished": "2024-05-01T05:19:55.293Z",
    "dateReserved": "2024-02-19T14:20:24.202Z",
    "dateUpdated": "2025-05-04T09:01:06.578Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26687 (GCVE-0-2024-26687)

Vulnerability from cvelistv5

Published

2024-04-03 14:54

Modified

2025-05-04 08:54

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: xen/events: close evtchn after mapping cleanup shutdown_pirq and startup_pirq are not taking the irq_mapping_update_lock because they can't due to lock inversion. Both are called with the irq_desc->lock being taking. The lock order, however, is first irq_mapping_update_lock and then irq_desc->lock. This opens multiple races: - shutdown_pirq can be interrupted by a function that allocates an event channel: CPU0 CPU1 shutdown_pirq { xen_evtchn_close(e) __startup_pirq { EVTCHNOP_bind_pirq -> returns just freed evtchn e set_evtchn_to_irq(e, irq) } xen_irq_info_cleanup() { set_evtchn_to_irq(e, -1) } } Assume here event channel e refers here to the same event channel number. After this race the evtchn_to_irq mapping for e is invalid (-1). - __startup_pirq races with __unbind_from_irq in a similar way. Because __startup_pirq doesn't take irq_mapping_update_lock it can grab the evtchn that __unbind_from_irq is currently freeing and cleaning up. In this case even though the event channel is allocated, its mapping can be unset in evtchn_to_irq. The fix is to first cleanup the mappings and then close the event channel. In this way, when an event channel gets allocated it's potential previous evtchn_to_irq mappings are guaranteed to be unset already. This is also the reverse order of the allocation where first the event channel is allocated and then the mappings are setup. On a 5.10 kernel prior to commit 3fcdaf3d7634 ("xen/events: modify internal [un]bind interfaces"), we hit a BUG like the following during probing of NVMe devices. The issue is that during nvme_setup_io_queues, pci_free_irq is called for every device which results in a call to shutdown_pirq. With many nvme devices it's therefore likely to hit this race during boot because there will be multiple calls to shutdown_pirq and startup_pirq are running potentially in parallel. ------------[ cut here ]------------ blkfront: xvda: barrier or flush: disabled; persistent grants: enabled; indirect descriptors: enabled; bounce buffer: enabled kernel BUG at drivers/xen/events/events_base.c:499! invalid opcode: 0000 [#1] SMP PTI CPU: 44 PID: 375 Comm: kworker/u257:23 Not tainted 5.10.201-191.748.amzn2.x86_64 #1 Hardware name: Xen HVM domU, BIOS 4.11.amazon 08/24/2006 Workqueue: nvme-reset-wq nvme_reset_work RIP: 0010:bind_evtchn_to_cpu+0xdf/0xf0 Code: 5d 41 5e c3 cc cc cc cc 44 89 f7 e8 2b 55 ad ff 49 89 c5 48 85 c0 0f 84 64 ff ff ff 4c 8b 68 30 41 83 fe ff 0f 85 60 ff ff ff <0f> 0b 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 0f 1f 44 00 00 RSP: 0000:ffffc9000d533b08 EFLAGS: 00010046 RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000006 RDX: 0000000000000028 RSI: 00000000ffffffff RDI: 00000000ffffffff RBP: ffff888107419680 R08: 0000000000000000 R09: ffffffff82d72b00 R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000001ed R13: 0000000000000000 R14: 00000000ffffffff R15: 0000000000000002 FS: 0000000000000000(0000) GS:ffff88bc8b500000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000000000 CR3: 0000000002610001 CR4: 00000000001706e0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: ? show_trace_log_lvl+0x1c1/0x2d9 ? show_trace_log_lvl+0x1c1/0x2d9 ? set_affinity_irq+0xdc/0x1c0 ? __die_body.cold+0x8/0xd ? die+0x2b/0x50 ? do_trap+0x90/0x110 ? bind_evtchn_to_cpu+0xdf/0xf0 ? do_error_trap+0x65/0x80 ? bind_evtchn_to_cpu+0xdf/0xf0 ? exc_invalid_op+0x4e/0x70 ? bind_evtchn_to_cpu+0xdf/0xf0 ? asm_exc_invalid_op+0x12/0x20 ? bind_evtchn_to_cpu+0xdf/0x ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/9470f5b2503cae994098dea9682aee15b313fa44
	https://git.kernel.org/stable/c/0fc88aeb2e32b76db3fe6a624b8333dbe621b8fd
	https://git.kernel.org/stable/c/ea592baf9e41779fe9a0424c03dd2f324feca3b3
	https://git.kernel.org/stable/c/585a344af6bcac222608a158fc2830ff02712af5
	https://git.kernel.org/stable/c/20980195ec8d2e41653800c45c8c367fa1b1f2b4
	https://git.kernel.org/stable/c/9be71aa12afa91dfe457b3fb4a444c42b1ee036b
	https://git.kernel.org/stable/c/fa765c4b4aed2d64266b694520ecb025c862c5a9

Impacted products

Vendor

Product

Version

►

Linux

Version: d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55
Version: d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55
Version: d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55
Version: d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55
Version: d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55
Version: d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55
Version: d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55

Linux

Version: 2.6.37

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:12.637Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9470f5b2503cae994098dea9682aee15b313fa44"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0fc88aeb2e32b76db3fe6a624b8333dbe621b8fd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ea592baf9e41779fe9a0424c03dd2f324feca3b3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/585a344af6bcac222608a158fc2830ff02712af5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/20980195ec8d2e41653800c45c8c367fa1b1f2b4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9be71aa12afa91dfe457b3fb4a444c42b1ee036b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fa765c4b4aed2d64266b694520ecb025c862c5a9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26687",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:53:07.213399Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:32.707Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/xen/events/events_base.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "9470f5b2503cae994098dea9682aee15b313fa44",
              "status": "affected",
              "version": "d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55",
              "versionType": "git"
            },
            {
              "lessThan": "0fc88aeb2e32b76db3fe6a624b8333dbe621b8fd",
              "status": "affected",
              "version": "d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55",
              "versionType": "git"
            },
            {
              "lessThan": "ea592baf9e41779fe9a0424c03dd2f324feca3b3",
              "status": "affected",
              "version": "d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55",
              "versionType": "git"
            },
            {
              "lessThan": "585a344af6bcac222608a158fc2830ff02712af5",
              "status": "affected",
              "version": "d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55",
              "versionType": "git"
            },
            {
              "lessThan": "20980195ec8d2e41653800c45c8c367fa1b1f2b4",
              "status": "affected",
              "version": "d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55",
              "versionType": "git"
            },
            {
              "lessThan": "9be71aa12afa91dfe457b3fb4a444c42b1ee036b",
              "status": "affected",
              "version": "d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55",
              "versionType": "git"
            },
            {
              "lessThan": "fa765c4b4aed2d64266b694520ecb025c862c5a9",
              "status": "affected",
              "version": "d46a78b05c0e37f76ddf4a7a67bf0b6c68bada55",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/xen/events/events_base.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.37"
            },
            {
              "lessThan": "2.6.37",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.81",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "versionStartIncluding": "2.6.37",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "2.6.37",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "2.6.37",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.81",
                  "versionStartIncluding": "2.6.37",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "versionStartIncluding": "2.6.37",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "2.6.37",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "2.6.37",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nxen/events: close evtchn after mapping cleanup\n\nshutdown_pirq and startup_pirq are not taking the\nirq_mapping_update_lock because they can\u0027t due to lock inversion. Both\nare called with the irq_desc-\u003elock being taking. The lock order,\nhowever, is first irq_mapping_update_lock and then irq_desc-\u003elock.\n\nThis opens multiple races:\n- shutdown_pirq can be interrupted by a function that allocates an event\n  channel:\n\n  CPU0                        CPU1\n  shutdown_pirq {\n    xen_evtchn_close(e)\n                              __startup_pirq {\n                                EVTCHNOP_bind_pirq\n                                  -\u003e returns just freed evtchn e\n                                set_evtchn_to_irq(e, irq)\n                              }\n    xen_irq_info_cleanup() {\n      set_evtchn_to_irq(e, -1)\n    }\n  }\n\n  Assume here event channel e refers here to the same event channel\n  number.\n  After this race the evtchn_to_irq mapping for e is invalid (-1).\n\n- __startup_pirq races with __unbind_from_irq in a similar way. Because\n  __startup_pirq doesn\u0027t take irq_mapping_update_lock it can grab the\n  evtchn that __unbind_from_irq is currently freeing and cleaning up. In\n  this case even though the event channel is allocated, its mapping can\n  be unset in evtchn_to_irq.\n\nThe fix is to first cleanup the mappings and then close the event\nchannel. In this way, when an event channel gets allocated it\u0027s\npotential previous evtchn_to_irq mappings are guaranteed to be unset already.\nThis is also the reverse order of the allocation where first the event\nchannel is allocated and then the mappings are setup.\n\nOn a 5.10 kernel prior to commit 3fcdaf3d7634 (\"xen/events: modify internal\n[un]bind interfaces\"), we hit a BUG like the following during probing of NVMe\ndevices. The issue is that during nvme_setup_io_queues, pci_free_irq\nis called for every device which results in a call to shutdown_pirq.\nWith many nvme devices it\u0027s therefore likely to hit this race during\nboot because there will be multiple calls to shutdown_pirq and\nstartup_pirq are running potentially in parallel.\n\n  ------------[ cut here ]------------\n  blkfront: xvda: barrier or flush: disabled; persistent grants: enabled; indirect descriptors: enabled; bounce buffer: enabled\n  kernel BUG at drivers/xen/events/events_base.c:499!\n  invalid opcode: 0000 [#1] SMP PTI\n  CPU: 44 PID: 375 Comm: kworker/u257:23 Not tainted 5.10.201-191.748.amzn2.x86_64 #1\n  Hardware name: Xen HVM domU, BIOS 4.11.amazon 08/24/2006\n  Workqueue: nvme-reset-wq nvme_reset_work\n  RIP: 0010:bind_evtchn_to_cpu+0xdf/0xf0\n  Code: 5d 41 5e c3 cc cc cc cc 44 89 f7 e8 2b 55 ad ff 49 89 c5 48 85 c0 0f 84 64 ff ff ff 4c 8b 68 30 41 83 fe ff 0f 85 60 ff ff ff \u003c0f\u003e 0b 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 0f 1f 44 00 00\n  RSP: 0000:ffffc9000d533b08 EFLAGS: 00010046\n  RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000006\n  RDX: 0000000000000028 RSI: 00000000ffffffff RDI: 00000000ffffffff\n  RBP: ffff888107419680 R08: 0000000000000000 R09: ffffffff82d72b00\n  R10: 0000000000000000 R11: 0000000000000000 R12: 00000000000001ed\n  R13: 0000000000000000 R14: 00000000ffffffff R15: 0000000000000002\n  FS:  0000000000000000(0000) GS:ffff88bc8b500000(0000) knlGS:0000000000000000\n  CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n  CR2: 0000000000000000 CR3: 0000000002610001 CR4: 00000000001706e0\n  DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n  DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n  Call Trace:\n   ? show_trace_log_lvl+0x1c1/0x2d9\n   ? show_trace_log_lvl+0x1c1/0x2d9\n   ? set_affinity_irq+0xdc/0x1c0\n   ? __die_body.cold+0x8/0xd\n   ? die+0x2b/0x50\n   ? do_trap+0x90/0x110\n   ? bind_evtchn_to_cpu+0xdf/0xf0\n   ? do_error_trap+0x65/0x80\n   ? bind_evtchn_to_cpu+0xdf/0xf0\n   ? exc_invalid_op+0x4e/0x70\n   ? bind_evtchn_to_cpu+0xdf/0xf0\n   ? asm_exc_invalid_op+0x12/0x20\n   ? bind_evtchn_to_cpu+0xdf/0x\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:54:04.797Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/9470f5b2503cae994098dea9682aee15b313fa44"
        },
        {
          "url": "https://git.kernel.org/stable/c/0fc88aeb2e32b76db3fe6a624b8333dbe621b8fd"
        },
        {
          "url": "https://git.kernel.org/stable/c/ea592baf9e41779fe9a0424c03dd2f324feca3b3"
        },
        {
          "url": "https://git.kernel.org/stable/c/585a344af6bcac222608a158fc2830ff02712af5"
        },
        {
          "url": "https://git.kernel.org/stable/c/20980195ec8d2e41653800c45c8c367fa1b1f2b4"
        },
        {
          "url": "https://git.kernel.org/stable/c/9be71aa12afa91dfe457b3fb4a444c42b1ee036b"
        },
        {
          "url": "https://git.kernel.org/stable/c/fa765c4b4aed2d64266b694520ecb025c862c5a9"
        }
      ],
      "title": "xen/events: close evtchn after mapping cleanup",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26687",
    "datePublished": "2024-04-03T14:54:49.250Z",
    "dateReserved": "2024-02-19T14:20:24.154Z",
    "dateUpdated": "2025-05-04T08:54:04.797Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26901 (GCVE-0-2024-26901)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:59

Severity ?

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Summary

In the Linux kernel, the following vulnerability has been resolved: do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in do_sys_name_to_handle() and issued the following report [1]. [1] "BUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xbc/0x100 lib/usercopy.c:40 instrument_copy_to_user include/linux/instrumented.h:114 [inline] _copy_to_user+0xbc/0x100 lib/usercopy.c:40 copy_to_user include/linux/uaccess.h:191 [inline] do_sys_name_to_handle fs/fhandle.c:73 [inline] __do_sys_name_to_handle_at fs/fhandle.c:112 [inline] __se_sys_name_to_handle_at+0x949/0xb10 fs/fhandle.c:94 __x64_sys_name_to_handle_at+0xe4/0x140 fs/fhandle.c:94 ... Uninit was created at: slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768 slab_alloc_node mm/slub.c:3478 [inline] __kmem_cache_alloc_node+0x5c9/0x970 mm/slub.c:3517 __do_kmalloc_node mm/slab_common.c:1006 [inline] __kmalloc+0x121/0x3c0 mm/slab_common.c:1020 kmalloc include/linux/slab.h:604 [inline] do_sys_name_to_handle fs/fhandle.c:39 [inline] __do_sys_name_to_handle_at fs/fhandle.c:112 [inline] __se_sys_name_to_handle_at+0x441/0xb10 fs/fhandle.c:94 __x64_sys_name_to_handle_at+0xe4/0x140 fs/fhandle.c:94 ... Bytes 18-19 of 20 are uninitialized Memory access of size 20 starts at ffff888128a46380 Data copied to user address 0000000020000240" Per Chuck Lever's suggestion, use kzalloc() instead of kmalloc() to solve the problem.

References

►

URL

Tags

	https://git.kernel.org/stable/c/4bac28f441e3cc9d3f1a84c8d023228a68d8a7c1
	https://git.kernel.org/stable/c/772a7def9868091da3bcb0d6c6ff9f0c03d7fa8b
	https://git.kernel.org/stable/c/cde76b3af247f615447bcfecf610bb76c3529126
	https://git.kernel.org/stable/c/423b6bdf19bbc5e1f7e7461045099917378f7e71
	https://git.kernel.org/stable/c/e6450d5e46a737a008b4885aa223486113bf0ad6
	https://git.kernel.org/stable/c/c1362eae861db28b1608b9dc23e49634fe87b63b
	https://git.kernel.org/stable/c/cba138f1ef37ec6f961baeab62f312dedc7cf730
	https://git.kernel.org/stable/c/bf9ec1b24ab4e94345aa1c60811dd329f069c38b
	https://git.kernel.org/stable/c/3948abaa4e2be938ccdfc289385a27342fb13d43

Impacted products

Vendor

Product

Version

►

Linux

Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be
Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be
Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be
Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be
Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be
Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be
Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be
Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be
Version: 990d6c2d7aee921e3bce22b2d6a750fd552262be

Linux

Version: 2.6.39

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "LOW",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26901",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-16T15:11:22.418196Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-07T19:03:33.420Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.665Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4bac28f441e3cc9d3f1a84c8d023228a68d8a7c1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/772a7def9868091da3bcb0d6c6ff9f0c03d7fa8b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cde76b3af247f615447bcfecf610bb76c3529126"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/423b6bdf19bbc5e1f7e7461045099917378f7e71"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e6450d5e46a737a008b4885aa223486113bf0ad6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c1362eae861db28b1608b9dc23e49634fe87b63b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cba138f1ef37ec6f961baeab62f312dedc7cf730"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bf9ec1b24ab4e94345aa1c60811dd329f069c38b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3948abaa4e2be938ccdfc289385a27342fb13d43"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/fhandle.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "4bac28f441e3cc9d3f1a84c8d023228a68d8a7c1",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            },
            {
              "lessThan": "772a7def9868091da3bcb0d6c6ff9f0c03d7fa8b",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            },
            {
              "lessThan": "cde76b3af247f615447bcfecf610bb76c3529126",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            },
            {
              "lessThan": "423b6bdf19bbc5e1f7e7461045099917378f7e71",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            },
            {
              "lessThan": "e6450d5e46a737a008b4885aa223486113bf0ad6",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            },
            {
              "lessThan": "c1362eae861db28b1608b9dc23e49634fe87b63b",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            },
            {
              "lessThan": "cba138f1ef37ec6f961baeab62f312dedc7cf730",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            },
            {
              "lessThan": "bf9ec1b24ab4e94345aa1c60811dd329f069c38b",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            },
            {
              "lessThan": "3948abaa4e2be938ccdfc289385a27342fb13d43",
              "status": "affected",
              "version": "990d6c2d7aee921e3bce22b2d6a750fd552262be",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/fhandle.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.39"
            },
            {
              "lessThan": "2.6.39",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.39",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndo_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak\n\nsyzbot identified a kernel information leak vulnerability in\ndo_sys_name_to_handle() and issued the following report [1].\n\n[1]\n\"BUG: KMSAN: kernel-infoleak in instrument_copy_to_user include/linux/instrumented.h:114 [inline]\nBUG: KMSAN: kernel-infoleak in _copy_to_user+0xbc/0x100 lib/usercopy.c:40\n instrument_copy_to_user include/linux/instrumented.h:114 [inline]\n _copy_to_user+0xbc/0x100 lib/usercopy.c:40\n copy_to_user include/linux/uaccess.h:191 [inline]\n do_sys_name_to_handle fs/fhandle.c:73 [inline]\n __do_sys_name_to_handle_at fs/fhandle.c:112 [inline]\n __se_sys_name_to_handle_at+0x949/0xb10 fs/fhandle.c:94\n __x64_sys_name_to_handle_at+0xe4/0x140 fs/fhandle.c:94\n ...\n\nUninit was created at:\n slab_post_alloc_hook+0x129/0xa70 mm/slab.h:768\n slab_alloc_node mm/slub.c:3478 [inline]\n __kmem_cache_alloc_node+0x5c9/0x970 mm/slub.c:3517\n __do_kmalloc_node mm/slab_common.c:1006 [inline]\n __kmalloc+0x121/0x3c0 mm/slab_common.c:1020\n kmalloc include/linux/slab.h:604 [inline]\n do_sys_name_to_handle fs/fhandle.c:39 [inline]\n __do_sys_name_to_handle_at fs/fhandle.c:112 [inline]\n __se_sys_name_to_handle_at+0x441/0xb10 fs/fhandle.c:94\n __x64_sys_name_to_handle_at+0xe4/0x140 fs/fhandle.c:94\n ...\n\nBytes 18-19 of 20 are uninitialized\nMemory access of size 20 starts at ffff888128a46380\nData copied to user address 0000000020000240\"\n\nPer Chuck Lever\u0027s suggestion, use kzalloc() instead of kmalloc() to\nsolve the problem."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:59:15.310Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/4bac28f441e3cc9d3f1a84c8d023228a68d8a7c1"
        },
        {
          "url": "https://git.kernel.org/stable/c/772a7def9868091da3bcb0d6c6ff9f0c03d7fa8b"
        },
        {
          "url": "https://git.kernel.org/stable/c/cde76b3af247f615447bcfecf610bb76c3529126"
        },
        {
          "url": "https://git.kernel.org/stable/c/423b6bdf19bbc5e1f7e7461045099917378f7e71"
        },
        {
          "url": "https://git.kernel.org/stable/c/e6450d5e46a737a008b4885aa223486113bf0ad6"
        },
        {
          "url": "https://git.kernel.org/stable/c/c1362eae861db28b1608b9dc23e49634fe87b63b"
        },
        {
          "url": "https://git.kernel.org/stable/c/cba138f1ef37ec6f961baeab62f312dedc7cf730"
        },
        {
          "url": "https://git.kernel.org/stable/c/bf9ec1b24ab4e94345aa1c60811dd329f069c38b"
        },
        {
          "url": "https://git.kernel.org/stable/c/3948abaa4e2be938ccdfc289385a27342fb13d43"
        }
      ],
      "title": "do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26901",
    "datePublished": "2024-04-17T10:27:50.374Z",
    "dateReserved": "2024-02-19T14:20:24.187Z",
    "dateUpdated": "2025-05-04T08:59:15.310Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26671 (GCVE-0-2024-26671)

Vulnerability from cvelistv5

Published

2024-04-02 06:49

Modified

2025-05-04 08:53

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix IO hang from sbitmap wakeup race In blk_mq_mark_tag_wait(), __add_wait_queue() may be re-ordered with the following blk_mq_get_driver_tag() in case of getting driver tag failure. Then in __sbitmap_queue_wake_up(), waitqueue_active() may not observe the added waiter in blk_mq_mark_tag_wait() and wake up nothing, meantime blk_mq_mark_tag_wait() can't get driver tag successfully. This issue can be reproduced by running the following test in loop, and fio hang can be observed in < 30min when running it on my test VM in laptop. modprobe -r scsi_debug modprobe scsi_debug delay=0 dev_size_mb=4096 max_queue=1 host_max_queue=1 submit_queues=4 dev=`ls -d /sys/bus/pseudo/drivers/scsi_debug/adapter*/host*/target*/*/block/* | head -1 | xargs basename` fio --filename=/dev/"$dev" --direct=1 --rw=randrw --bs=4k --iodepth=1 \ --runtime=100 --numjobs=40 --time_based --name=test \ --ioengine=libaio Fix the issue by adding one explicit barrier in blk_mq_mark_tag_wait(), which is just fine in case of running out of tag.

References

►

URL

Tags

	https://git.kernel.org/stable/c/9525b38180e2753f0daa1a522b7767a2aa969676
	https://git.kernel.org/stable/c/ecd7744a1446eb02ccc63e493e2eb6ede4ef1e10
	https://git.kernel.org/stable/c/7610ba1319253225a9ba8a9d28d472fc883b4e2f
	https://git.kernel.org/stable/c/89e0e66682e1538aeeaa3109503473663cd24c8b
	https://git.kernel.org/stable/c/1d9c777d3e70bdc57dddf7a14a80059d65919e56
	https://git.kernel.org/stable/c/6d8b01624a2540336a32be91f25187a433af53a0
	https://git.kernel.org/stable/c/f1bc0d8163f8ee84a8d5affdf624cfad657df1d2
	https://git.kernel.org/stable/c/5266caaf5660529e3da53004b8b7174cab6374ed

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:12.464Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9525b38180e2753f0daa1a522b7767a2aa969676"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ecd7744a1446eb02ccc63e493e2eb6ede4ef1e10"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7610ba1319253225a9ba8a9d28d472fc883b4e2f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/89e0e66682e1538aeeaa3109503473663cd24c8b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1d9c777d3e70bdc57dddf7a14a80059d65919e56"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6d8b01624a2540336a32be91f25187a433af53a0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f1bc0d8163f8ee84a8d5affdf624cfad657df1d2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5266caaf5660529e3da53004b8b7174cab6374ed"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26671",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:53:32.693372Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:37.992Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "block/blk-mq.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "9525b38180e2753f0daa1a522b7767a2aa969676",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ecd7744a1446eb02ccc63e493e2eb6ede4ef1e10",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "7610ba1319253225a9ba8a9d28d472fc883b4e2f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "89e0e66682e1538aeeaa3109503473663cd24c8b",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "1d9c777d3e70bdc57dddf7a14a80059d65919e56",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6d8b01624a2540336a32be91f25187a433af53a0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f1bc0d8163f8ee84a8d5affdf624cfad657df1d2",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5266caaf5660529e3da53004b8b7174cab6374ed",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "block/blk-mq.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.307",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.269",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.77",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.307",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.269",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.77",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nblk-mq: fix IO hang from sbitmap wakeup race\n\nIn blk_mq_mark_tag_wait(), __add_wait_queue() may be re-ordered\nwith the following blk_mq_get_driver_tag() in case of getting driver\ntag failure.\n\nThen in __sbitmap_queue_wake_up(), waitqueue_active() may not observe\nthe added waiter in blk_mq_mark_tag_wait() and wake up nothing, meantime\nblk_mq_mark_tag_wait() can\u0027t get driver tag successfully.\n\nThis issue can be reproduced by running the following test in loop, and\nfio hang can be observed in \u003c 30min when running it on my test VM\nin laptop.\n\n\tmodprobe -r scsi_debug\n\tmodprobe scsi_debug delay=0 dev_size_mb=4096 max_queue=1 host_max_queue=1 submit_queues=4\n\tdev=`ls -d /sys/bus/pseudo/drivers/scsi_debug/adapter*/host*/target*/*/block/* | head -1 | xargs basename`\n\tfio --filename=/dev/\"$dev\" --direct=1 --rw=randrw --bs=4k --iodepth=1 \\\n       \t\t--runtime=100 --numjobs=40 --time_based --name=test \\\n        \t--ioengine=libaio\n\nFix the issue by adding one explicit barrier in blk_mq_mark_tag_wait(), which\nis just fine in case of running out of tag."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:53:36.352Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/9525b38180e2753f0daa1a522b7767a2aa969676"
        },
        {
          "url": "https://git.kernel.org/stable/c/ecd7744a1446eb02ccc63e493e2eb6ede4ef1e10"
        },
        {
          "url": "https://git.kernel.org/stable/c/7610ba1319253225a9ba8a9d28d472fc883b4e2f"
        },
        {
          "url": "https://git.kernel.org/stable/c/89e0e66682e1538aeeaa3109503473663cd24c8b"
        },
        {
          "url": "https://git.kernel.org/stable/c/1d9c777d3e70bdc57dddf7a14a80059d65919e56"
        },
        {
          "url": "https://git.kernel.org/stable/c/6d8b01624a2540336a32be91f25187a433af53a0"
        },
        {
          "url": "https://git.kernel.org/stable/c/f1bc0d8163f8ee84a8d5affdf624cfad657df1d2"
        },
        {
          "url": "https://git.kernel.org/stable/c/5266caaf5660529e3da53004b8b7174cab6374ed"
        }
      ],
      "title": "blk-mq: fix IO hang from sbitmap wakeup race",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26671",
    "datePublished": "2024-04-02T06:49:13.834Z",
    "dateReserved": "2024-02-19T14:20:24.150Z",
    "dateUpdated": "2025-05-04T08:53:36.352Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26766 (GCVE-0-2024-26766)

Vulnerability from cvelistv5

Published

2024-04-03 17:00

Modified

2025-05-04 12:54

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix sdma.h tx->num_descs off-by-one error Unfortunately the commit `fd8958efe877` introduced another error causing the `descs` array to overflow. This reults in further crashes easily reproducible by `sendmsg` system call. [ 1080.836473] general protection fault, probably for non-canonical address 0x400300015528b00a: 0000 [#1] PREEMPT SMP PTI [ 1080.869326] RIP: 0010:hfi1_ipoib_build_ib_tx_headers.constprop.0+0xe1/0x2b0 [hfi1] -- [ 1080.974535] Call Trace: [ 1080.976990] <TASK> [ 1081.021929] hfi1_ipoib_send_dma_common+0x7a/0x2e0 [hfi1] [ 1081.027364] hfi1_ipoib_send_dma_list+0x62/0x270 [hfi1] [ 1081.032633] hfi1_ipoib_send+0x112/0x300 [hfi1] [ 1081.042001] ipoib_start_xmit+0x2a9/0x2d0 [ib_ipoib] [ 1081.046978] dev_hard_start_xmit+0xc4/0x210 -- [ 1081.148347] __sys_sendmsg+0x59/0xa0 crash> ipoib_txreq 0xffff9cfeba229f00 struct ipoib_txreq { txreq = { list = { next = 0xffff9cfeba229f00, prev = 0xffff9cfeba229f00 }, descp = 0xffff9cfeba229f40, coalesce_buf = 0x0, wait = 0xffff9cfea4e69a48, complete = 0xffffffffc0fe0760 <hfi1_ipoib_sdma_complete>, packet_len = 0x46d, tlen = 0x0, num_desc = 0x0, desc_limit = 0x6, next_descq_idx = 0x45c, coalesce_idx = 0x0, flags = 0x0, descs = {{ qw = {0x8024000120dffb00, 0x4} # SDMA_DESC0_FIRST_DESC_FLAG (bit 63) }, { qw = { 0x3800014231b108, 0x4} }, { qw = { 0x310000e4ee0fcf0, 0x8} }, { qw = { 0x3000012e9f8000, 0x8} }, { qw = { 0x59000dfb9d0000, 0x8} }, { qw = { 0x78000e02e40000, 0x8} }} }, sdma_hdr = 0x400300015528b000, <<< invalid pointer in the tx request structure sdma_status = 0x0, SDMA_DESC0_LAST_DESC_FLAG (bit 62) complete = 0x0, priv = 0x0, txq = 0xffff9cfea4e69880, skb = 0xffff9d099809f400 } If an SDMA send consists of exactly 6 descriptors and requires dword padding (in the 7th descriptor), the sdma_txreq descriptor array is not properly expanded and the packet will overflow into the container structure. This results in a panic when the send completion runs. The exact panic varies depending on what elements of the container structure get corrupted. The fix is to use the correct expression in _pad_sdma_tx_descs() to test the need to expand the descriptor array. With this patch the crashes are no longer reproducible and the machine is stable.

References

►

URL

Tags

	https://git.kernel.org/stable/c/115b7f3bc1dce590a6851a2dcf23dc1100c49790
	https://git.kernel.org/stable/c/5833024a9856f454a964a198c63a57e59e07baf5
	https://git.kernel.org/stable/c/3f38d22e645e2e994979426ea5a35186102ff3c2
	https://git.kernel.org/stable/c/47ae64df23ed1318e27bd9844e135a5e1c0e6e39
	https://git.kernel.org/stable/c/52dc9a7a573dbf778625a0efca0fca55489f084b
	https://git.kernel.org/stable/c/a2fef1d81becf4ff60e1a249477464eae3c3bc2a
	https://git.kernel.org/stable/c/9034a1bec35e9f725315a3bb6002ef39666114d9
	https://git.kernel.org/stable/c/e6f57c6881916df39db7d95981a8ad2b9c3458d6

Impacted products

Vendor

Product

Version

►

Linux

Version: d1c1ee052d25ca23735eea912f843bc7834781b4
Version: 40ac5cb6cbb01afa40881f78b4d2f559fb7065c4
Version: 6cf8f3d690bb5ad31ef0f41a6206ecf5a068d179
Version: bd57756a7e43c7127d0eca1fc5868e705fd0f7ba
Version: eeaf35f4e3b360162081de5e744cf32d6d1b0091
Version: fd8958efe8779d3db19c9124fce593ce681ac709
Version: fd8958efe8779d3db19c9124fce593ce681ac709
Version: fd8958efe8779d3db19c9124fce593ce681ac709
Version: 0ef9594936d1f078e8599a1cf683b052df2bec00

Linux

Version: 6.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26766",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-03T18:11:09.801717Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:48:44.178Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.309Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/115b7f3bc1dce590a6851a2dcf23dc1100c49790"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5833024a9856f454a964a198c63a57e59e07baf5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3f38d22e645e2e994979426ea5a35186102ff3c2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/47ae64df23ed1318e27bd9844e135a5e1c0e6e39"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/52dc9a7a573dbf778625a0efca0fca55489f084b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a2fef1d81becf4ff60e1a249477464eae3c3bc2a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9034a1bec35e9f725315a3bb6002ef39666114d9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e6f57c6881916df39db7d95981a8ad2b9c3458d6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/hw/hfi1/sdma.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "115b7f3bc1dce590a6851a2dcf23dc1100c49790",
              "status": "affected",
              "version": "d1c1ee052d25ca23735eea912f843bc7834781b4",
              "versionType": "git"
            },
            {
              "lessThan": "5833024a9856f454a964a198c63a57e59e07baf5",
              "status": "affected",
              "version": "40ac5cb6cbb01afa40881f78b4d2f559fb7065c4",
              "versionType": "git"
            },
            {
              "lessThan": "3f38d22e645e2e994979426ea5a35186102ff3c2",
              "status": "affected",
              "version": "6cf8f3d690bb5ad31ef0f41a6206ecf5a068d179",
              "versionType": "git"
            },
            {
              "lessThan": "47ae64df23ed1318e27bd9844e135a5e1c0e6e39",
              "status": "affected",
              "version": "bd57756a7e43c7127d0eca1fc5868e705fd0f7ba",
              "versionType": "git"
            },
            {
              "lessThan": "52dc9a7a573dbf778625a0efca0fca55489f084b",
              "status": "affected",
              "version": "eeaf35f4e3b360162081de5e744cf32d6d1b0091",
              "versionType": "git"
            },
            {
              "lessThan": "a2fef1d81becf4ff60e1a249477464eae3c3bc2a",
              "status": "affected",
              "version": "fd8958efe8779d3db19c9124fce593ce681ac709",
              "versionType": "git"
            },
            {
              "lessThan": "9034a1bec35e9f725315a3bb6002ef39666114d9",
              "status": "affected",
              "version": "fd8958efe8779d3db19c9124fce593ce681ac709",
              "versionType": "git"
            },
            {
              "lessThan": "e6f57c6881916df39db7d95981a8ad2b9c3458d6",
              "status": "affected",
              "version": "fd8958efe8779d3db19c9124fce593ce681ac709",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "0ef9594936d1f078e8599a1cf683b052df2bec00",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/hw/hfi1/sdma.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.3"
            },
            {
              "lessThan": "6.3",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.308",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.270",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.211",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.308",
                  "versionStartIncluding": "4.19.291",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.270",
                  "versionStartIncluding": "5.4.251",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.211",
                  "versionStartIncluding": "5.10.188",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "versionStartIncluding": "5.15.99",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "versionStartIncluding": "6.1.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "versionStartIncluding": "6.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "versionStartIncluding": "6.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "6.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "6.2.3",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nIB/hfi1: Fix sdma.h tx-\u003enum_descs off-by-one error\n\nUnfortunately the commit `fd8958efe877` introduced another error\ncausing the `descs` array to overflow. This reults in further crashes\neasily reproducible by `sendmsg` system call.\n\n[ 1080.836473] general protection fault, probably for non-canonical address 0x400300015528b00a: 0000 [#1] PREEMPT SMP PTI\n[ 1080.869326] RIP: 0010:hfi1_ipoib_build_ib_tx_headers.constprop.0+0xe1/0x2b0 [hfi1]\n--\n[ 1080.974535] Call Trace:\n[ 1080.976990]  \u003cTASK\u003e\n[ 1081.021929]  hfi1_ipoib_send_dma_common+0x7a/0x2e0 [hfi1]\n[ 1081.027364]  hfi1_ipoib_send_dma_list+0x62/0x270 [hfi1]\n[ 1081.032633]  hfi1_ipoib_send+0x112/0x300 [hfi1]\n[ 1081.042001]  ipoib_start_xmit+0x2a9/0x2d0 [ib_ipoib]\n[ 1081.046978]  dev_hard_start_xmit+0xc4/0x210\n--\n[ 1081.148347]  __sys_sendmsg+0x59/0xa0\n\ncrash\u003e ipoib_txreq 0xffff9cfeba229f00\nstruct ipoib_txreq {\n  txreq = {\n    list = {\n      next = 0xffff9cfeba229f00,\n      prev = 0xffff9cfeba229f00\n    },\n    descp = 0xffff9cfeba229f40,\n    coalesce_buf = 0x0,\n    wait = 0xffff9cfea4e69a48,\n    complete = 0xffffffffc0fe0760 \u003chfi1_ipoib_sdma_complete\u003e,\n    packet_len = 0x46d,\n    tlen = 0x0,\n    num_desc = 0x0,\n    desc_limit = 0x6,\n    next_descq_idx = 0x45c,\n    coalesce_idx = 0x0,\n    flags = 0x0,\n    descs = {{\n        qw = {0x8024000120dffb00, 0x4}  # SDMA_DESC0_FIRST_DESC_FLAG (bit 63)\n      }, {\n        qw = {  0x3800014231b108, 0x4}\n      }, {\n        qw = { 0x310000e4ee0fcf0, 0x8}\n      }, {\n        qw = {  0x3000012e9f8000, 0x8}\n      }, {\n        qw = {  0x59000dfb9d0000, 0x8}\n      }, {\n        qw = {  0x78000e02e40000, 0x8}\n      }}\n  },\n  sdma_hdr =  0x400300015528b000,  \u003c\u003c\u003c invalid pointer in the tx request structure\n  sdma_status = 0x0,                   SDMA_DESC0_LAST_DESC_FLAG (bit 62)\n  complete = 0x0,\n  priv = 0x0,\n  txq = 0xffff9cfea4e69880,\n  skb = 0xffff9d099809f400\n}\n\nIf an SDMA send consists of exactly 6 descriptors and requires dword\npadding (in the 7th descriptor), the sdma_txreq descriptor array is not\nproperly expanded and the packet will overflow into the container\nstructure. This results in a panic when the send completion runs. The\nexact panic varies depending on what elements of the container structure\nget corrupted. The fix is to use the correct expression in\n_pad_sdma_tx_descs() to test the need to expand the descriptor array.\n\nWith this patch the crashes are no longer reproducible and the machine is\nstable."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:54:42.053Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/115b7f3bc1dce590a6851a2dcf23dc1100c49790"
        },
        {
          "url": "https://git.kernel.org/stable/c/5833024a9856f454a964a198c63a57e59e07baf5"
        },
        {
          "url": "https://git.kernel.org/stable/c/3f38d22e645e2e994979426ea5a35186102ff3c2"
        },
        {
          "url": "https://git.kernel.org/stable/c/47ae64df23ed1318e27bd9844e135a5e1c0e6e39"
        },
        {
          "url": "https://git.kernel.org/stable/c/52dc9a7a573dbf778625a0efca0fca55489f084b"
        },
        {
          "url": "https://git.kernel.org/stable/c/a2fef1d81becf4ff60e1a249477464eae3c3bc2a"
        },
        {
          "url": "https://git.kernel.org/stable/c/9034a1bec35e9f725315a3bb6002ef39666114d9"
        },
        {
          "url": "https://git.kernel.org/stable/c/e6f57c6881916df39db7d95981a8ad2b9c3458d6"
        }
      ],
      "title": "IB/hfi1: Fix sdma.h tx-\u003enum_descs off-by-one error",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26766",
    "datePublished": "2024-04-03T17:00:48.642Z",
    "dateReserved": "2024-02-19T14:20:24.173Z",
    "dateUpdated": "2025-05-04T12:54:42.053Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26939 (GCVE-0-2024-26939)

Vulnerability from cvelistv5

Published

2024-05-01 05:17

Modified

2025-05-04 09:00

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/i915/vma: Fix UAF on destroy against retire race Object debugging tools were sporadically reporting illegal attempts to free a still active i915 VMA object when parking a GT believed to be idle. [161.359441] ODEBUG: free active (active state 0) object: ffff88811643b958 object type: i915_active hint: __i915_vma_active+0x0/0x50 [i915] [161.360082] WARNING: CPU: 5 PID: 276 at lib/debugobjects.c:514 debug_print_object+0x80/0xb0 ... [161.360304] CPU: 5 PID: 276 Comm: kworker/5:2 Not tainted 6.5.0-rc1-CI_DRM_13375-g003f860e5577+ #1 [161.360314] Hardware name: Intel Corporation Rocket Lake Client Platform/RocketLake S UDIMM 6L RVP, BIOS RKLSFWI1.R00.3173.A03.2204210138 04/21/2022 [161.360322] Workqueue: i915-unordered __intel_wakeref_put_work [i915] [161.360592] RIP: 0010:debug_print_object+0x80/0xb0 ... [161.361347] debug_object_free+0xeb/0x110 [161.361362] i915_active_fini+0x14/0x130 [i915] [161.361866] release_references+0xfe/0x1f0 [i915] [161.362543] i915_vma_parked+0x1db/0x380 [i915] [161.363129] __gt_park+0x121/0x230 [i915] [161.363515] ____intel_wakeref_put_last+0x1f/0x70 [i915] That has been tracked down to be happening when another thread is deactivating the VMA inside __active_retire() helper, after the VMA's active counter has been already decremented to 0, but before deactivation of the VMA's object is reported to the object debugging tool. We could prevent from that race by serializing i915_active_fini() with __active_retire() via ref->tree_lock, but that wouldn't stop the VMA from being used, e.g. from __i915_vma_retire() called at the end of __active_retire(), after that VMA has been already freed by a concurrent i915_vma_destroy() on return from the i915_active_fini(). Then, we should rather fix the issue at the VMA level, not in i915_active. Since __i915_vma_parked() is called from __gt_park() on last put of the GT's wakeref, the issue could be addressed by holding the GT wakeref long enough for __active_retire() to complete before that wakeref is released and the GT parked. I believe the issue was introduced by commit d93939730347 ("drm/i915: Remove the vma refcount") which moved a call to i915_active_fini() from a dropped i915_vma_release(), called on last put of the removed VMA kref, to i915_vma_parked() processing path called on last put of a GT wakeref. However, its visibility to the object debugging tool was suppressed by a bug in i915_active that was fixed two weeks later with commit e92eb246feb9 ("drm/i915/active: Fix missing debug object activation"). A VMA associated with a request doesn't acquire a GT wakeref by itself. Instead, it depends on a wakeref held directly by the request's active intel_context for a GT associated with its VM, and indirectly on that intel_context's engine wakeref if the engine belongs to the same GT as the VMA's VM. Those wakerefs are released asynchronously to VMA deactivation. Fix the issue by getting a wakeref for the VMA's GT when activating it, and putting that wakeref only after the VMA is deactivated. However, exclude global GTT from that processing path, otherwise the GPU never goes idle. Since __i915_vma_retire() may be called from atomic contexts, use async variant of wakeref put. Also, to avoid circular locking dependency, take care of acquiring the wakeref before VM mutex when both are needed. v7: Add inline comments with justifications for: - using untracked variants of intel_gt_pm_get/put() (Nirmoy), - using async variant of _put(), - not getting the wakeref in case of a global GTT, - always getting the first wakeref outside vm->mutex. v6: Since __i915_vma_active/retire() callbacks are not serialized, storing a wakeref tracking handle inside struct i915_vma is not safe, and there is no other good place for that. Use untracked variants of intel_gt_pm_get/put_async(). v5: Replace "tile" with "GT" across commit description (Rodrigo), - ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/704edc9252f4988ae1ad7dafa23d0db8d90d7190
	https://git.kernel.org/stable/c/5e3eb862df9f972ab677fb19e0d4b9b1be8db7b5
	https://git.kernel.org/stable/c/59b2626dd8c8a2e13f18054b3530e0c00073d79f
	https://git.kernel.org/stable/c/0e45882ca829b26b915162e8e86dbb1095768e9e

Impacted products

Vendor

Product

Version

►

Linux

Version: d93939730347360db0afe6a4367451b6f84ab7b1
Version: d93939730347360db0afe6a4367451b6f84ab7b1
Version: d93939730347360db0afe6a4367451b6f84ab7b1
Version: d93939730347360db0afe6a4367451b6f84ab7b1

Linux

Version: 5.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26939",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-06T18:59:58.125327Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-06T19:00:13.886Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.670Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/704edc9252f4988ae1ad7dafa23d0db8d90d7190"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5e3eb862df9f972ab677fb19e0d4b9b1be8db7b5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/59b2626dd8c8a2e13f18054b3530e0c00073d79f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0e45882ca829b26b915162e8e86dbb1095768e9e"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/i915/i915_vma.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "704edc9252f4988ae1ad7dafa23d0db8d90d7190",
              "status": "affected",
              "version": "d93939730347360db0afe6a4367451b6f84ab7b1",
              "versionType": "git"
            },
            {
              "lessThan": "5e3eb862df9f972ab677fb19e0d4b9b1be8db7b5",
              "status": "affected",
              "version": "d93939730347360db0afe6a4367451b6f84ab7b1",
              "versionType": "git"
            },
            {
              "lessThan": "59b2626dd8c8a2e13f18054b3530e0c00073d79f",
              "status": "affected",
              "version": "d93939730347360db0afe6a4367451b6f84ab7b1",
              "versionType": "git"
            },
            {
              "lessThan": "0e45882ca829b26b915162e8e86dbb1095768e9e",
              "status": "affected",
              "version": "d93939730347360db0afe6a4367451b6f84ab7b1",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/i915/i915_vma.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.19"
            },
            {
              "lessThan": "5.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.88",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.29",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.88",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.29",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/i915/vma: Fix UAF on destroy against retire race\n\nObject debugging tools were sporadically reporting illegal attempts to\nfree a still active i915 VMA object when parking a GT believed to be idle.\n\n[161.359441] ODEBUG: free active (active state 0) object: ffff88811643b958 object type: i915_active hint: __i915_vma_active+0x0/0x50 [i915]\n[161.360082] WARNING: CPU: 5 PID: 276 at lib/debugobjects.c:514 debug_print_object+0x80/0xb0\n...\n[161.360304] CPU: 5 PID: 276 Comm: kworker/5:2 Not tainted 6.5.0-rc1-CI_DRM_13375-g003f860e5577+ #1\n[161.360314] Hardware name: Intel Corporation Rocket Lake Client Platform/RocketLake S UDIMM 6L RVP, BIOS RKLSFWI1.R00.3173.A03.2204210138 04/21/2022\n[161.360322] Workqueue: i915-unordered __intel_wakeref_put_work [i915]\n[161.360592] RIP: 0010:debug_print_object+0x80/0xb0\n...\n[161.361347] debug_object_free+0xeb/0x110\n[161.361362] i915_active_fini+0x14/0x130 [i915]\n[161.361866] release_references+0xfe/0x1f0 [i915]\n[161.362543] i915_vma_parked+0x1db/0x380 [i915]\n[161.363129] __gt_park+0x121/0x230 [i915]\n[161.363515] ____intel_wakeref_put_last+0x1f/0x70 [i915]\n\nThat has been tracked down to be happening when another thread is\ndeactivating the VMA inside __active_retire() helper, after the VMA\u0027s\nactive counter has been already decremented to 0, but before deactivation\nof the VMA\u0027s object is reported to the object debugging tool.\n\nWe could prevent from that race by serializing i915_active_fini() with\n__active_retire() via ref-\u003etree_lock, but that wouldn\u0027t stop the VMA from\nbeing used, e.g. from __i915_vma_retire() called at the end of\n__active_retire(), after that VMA has been already freed by a concurrent\ni915_vma_destroy() on return from the i915_active_fini().  Then, we should\nrather fix the issue at the VMA level, not in i915_active.\n\nSince __i915_vma_parked() is called from __gt_park() on last put of the\nGT\u0027s wakeref, the issue could be addressed by holding the GT wakeref long\nenough for __active_retire() to complete before that wakeref is released\nand the GT parked.\n\nI believe the issue was introduced by commit d93939730347 (\"drm/i915:\nRemove the vma refcount\") which moved a call to i915_active_fini() from\na dropped i915_vma_release(), called on last put of the removed VMA kref,\nto i915_vma_parked() processing path called on last put of a GT wakeref.\nHowever, its visibility to the object debugging tool was suppressed by a\nbug in i915_active that was fixed two weeks later with commit e92eb246feb9\n(\"drm/i915/active: Fix missing debug object activation\").\n\nA VMA associated with a request doesn\u0027t acquire a GT wakeref by itself.\nInstead, it depends on a wakeref held directly by the request\u0027s active\nintel_context for a GT associated with its VM, and indirectly on that\nintel_context\u0027s engine wakeref if the engine belongs to the same GT as the\nVMA\u0027s VM.  Those wakerefs are released asynchronously to VMA deactivation.\n\nFix the issue by getting a wakeref for the VMA\u0027s GT when activating it,\nand putting that wakeref only after the VMA is deactivated.  However,\nexclude global GTT from that processing path, otherwise the GPU never goes\nidle.  Since __i915_vma_retire() may be called from atomic contexts, use\nasync variant of wakeref put.  Also, to avoid circular locking dependency,\ntake care of acquiring the wakeref before VM mutex when both are needed.\n\nv7: Add inline comments with justifications for:\n    - using untracked variants of intel_gt_pm_get/put() (Nirmoy),\n    - using async variant of _put(),\n    - not getting the wakeref in case of a global GTT,\n    - always getting the first wakeref outside vm-\u003emutex.\nv6: Since __i915_vma_active/retire() callbacks are not serialized, storing\n    a wakeref tracking handle inside struct i915_vma is not safe, and\n    there is no other good place for that.  Use untracked variants of\n    intel_gt_pm_get/put_async().\nv5: Replace \"tile\" with \"GT\" across commit description (Rodrigo),\n  - \n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:00:14.512Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/704edc9252f4988ae1ad7dafa23d0db8d90d7190"
        },
        {
          "url": "https://git.kernel.org/stable/c/5e3eb862df9f972ab677fb19e0d4b9b1be8db7b5"
        },
        {
          "url": "https://git.kernel.org/stable/c/59b2626dd8c8a2e13f18054b3530e0c00073d79f"
        },
        {
          "url": "https://git.kernel.org/stable/c/0e45882ca829b26b915162e8e86dbb1095768e9e"
        }
      ],
      "title": "drm/i915/vma: Fix UAF on destroy against retire race",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26939",
    "datePublished": "2024-05-01T05:17:44.370Z",
    "dateReserved": "2024-02-19T14:20:24.196Z",
    "dateUpdated": "2025-05-04T09:00:14.512Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48652 (GCVE-0-2022-48652)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 12:43

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ice: Fix crash by keep old cfg when update TCs more than queues There are problems if allocated queues less than Traffic Classes. Commit a632b2a4c920 ("ice: ethtool: Prohibit improper channel config for DCB") already disallow setting less queues than TCs. Another case is if we first set less queues, and later update more TCs config due to LLDP, ice_vsi_cfg_tc() will failed but left dirty num_txq/rxq and tc_cfg in vsi, that will cause invalid pointer access. [ 95.968089] ice 0000:3b:00.1: More TCs defined than queues/rings allocated. [ 95.968092] ice 0000:3b:00.1: Trying to use more Rx queues (8), than were allocated (1)! [ 95.968093] ice 0000:3b:00.1: Failed to config TC for VSI index: 0 [ 95.969621] general protection fault: 0000 [#1] SMP NOPTI [ 95.969705] CPU: 1 PID: 58405 Comm: lldpad Kdump: loaded Tainted: G U W O --------- -t - 4.18.0 #1 [ 95.969867] Hardware name: O.E.M/BC11SPSCB10, BIOS 8.23 12/30/2021 [ 95.969992] RIP: 0010:devm_kmalloc+0xa/0x60 [ 95.970052] Code: 5c ff ff ff 31 c0 5b 5d 41 5c c3 b8 f4 ff ff ff eb f4 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 89 d1 <8b> 97 60 02 00 00 48 8d 7e 18 48 39 f7 72 3f 55 89 ce 53 48 8b 4c [ 95.970344] RSP: 0018:ffffc9003f553888 EFLAGS: 00010206 [ 95.970425] RAX: dead000000000200 RBX: ffffea003c425b00 RCX: 00000000006080c0 [ 95.970536] RDX: 00000000006080c0 RSI: 0000000000000200 RDI: dead000000000200 [ 95.970648] RBP: dead000000000200 R08: 00000000000463c0 R09: ffff888ffa900000 [ 95.970760] R10: 0000000000000000 R11: 0000000000000002 R12: ffff888ff6b40100 [ 95.970870] R13: ffff888ff6a55018 R14: 0000000000000000 R15: ffff888ff6a55460 [ 95.970981] FS: 00007f51b7d24700(0000) GS:ffff88903ee80000(0000) knlGS:0000000000000000 [ 95.971108] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 95.971197] CR2: 00007fac5410d710 CR3: 0000000f2c1de002 CR4: 00000000007606e0 [ 95.971309] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 95.971419] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 95.971530] PKRU: 55555554 [ 95.971573] Call Trace: [ 95.971622] ice_setup_rx_ring+0x39/0x110 [ice] [ 95.971695] ice_vsi_setup_rx_rings+0x54/0x90 [ice] [ 95.971774] ice_vsi_open+0x25/0x120 [ice] [ 95.971843] ice_open_internal+0xb8/0x1f0 [ice] [ 95.971919] ice_ena_vsi+0x4f/0xd0 [ice] [ 95.971987] ice_dcb_ena_dis_vsi.constprop.5+0x29/0x90 [ice] [ 95.972082] ice_pf_dcb_cfg+0x29a/0x380 [ice] [ 95.972154] ice_dcbnl_setets+0x174/0x1b0 [ice] [ 95.972220] dcbnl_ieee_set+0x89/0x230 [ 95.972279] ? dcbnl_ieee_del+0x150/0x150 [ 95.972341] dcb_doit+0x124/0x1b0 [ 95.972392] rtnetlink_rcv_msg+0x243/0x2f0 [ 95.972457] ? dcb_doit+0x14d/0x1b0 [ 95.972510] ? __kmalloc_node_track_caller+0x1d3/0x280 [ 95.972591] ? rtnl_calcit.isra.31+0x100/0x100 [ 95.972661] netlink_rcv_skb+0xcf/0xf0 [ 95.972720] netlink_unicast+0x16d/0x220 [ 95.972781] netlink_sendmsg+0x2ba/0x3a0 [ 95.975891] sock_sendmsg+0x4c/0x50 [ 95.979032] ___sys_sendmsg+0x2e4/0x300 [ 95.982147] ? kmem_cache_alloc+0x13e/0x190 [ 95.985242] ? __wake_up_common_lock+0x79/0x90 [ 95.988338] ? __check_object_size+0xac/0x1b0 [ 95.991440] ? _copy_to_user+0x22/0x30 [ 95.994539] ? move_addr_to_user+0xbb/0xd0 [ 95.997619] ? __sys_sendmsg+0x53/0x80 [ 96.000664] __sys_sendmsg+0x53/0x80 [ 96.003747] do_syscall_64+0x5b/0x1d0 [ 96.006862] entry_SYSCALL_64_after_hwframe+0x65/0xca Only update num_txq/rxq when passed check, and restore tc_cfg if setup queue map failed.

References

►

URL

Tags

	https://git.kernel.org/stable/c/7c945e5b4787db47d728120b56c934ba05f99864
	https://git.kernel.org/stable/c/a509702cac95a8b450228a037c8542f57e538e5b

Impacted products

Vendor

Product

Version

►

Linux

Version: a632b2a4c920ce5af29410fb091f7ee6d2e77dc6
Version: a632b2a4c920ce5af29410fb091f7ee6d2e77dc6
Version: 4520c4bf4dca7aa285f30cb1ca8c08c531bbf0e9

Linux

Version: 5.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48652",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T18:39:48.506464Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:36.260Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.623Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7c945e5b4787db47d728120b56c934ba05f99864"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a509702cac95a8b450228a037c8542f57e538e5b"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/ice/ice_lib.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "7c945e5b4787db47d728120b56c934ba05f99864",
              "status": "affected",
              "version": "a632b2a4c920ce5af29410fb091f7ee6d2e77dc6",
              "versionType": "git"
            },
            {
              "lessThan": "a509702cac95a8b450228a037c8542f57e538e5b",
              "status": "affected",
              "version": "a632b2a4c920ce5af29410fb091f7ee6d2e77dc6",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "4520c4bf4dca7aa285f30cb1ca8c08c531bbf0e9",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/ice/ice_lib.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.19"
            },
            {
              "lessThan": "5.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.18.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nice: Fix crash by keep old cfg when update TCs more than queues\n\nThere are problems if allocated queues less than Traffic Classes.\n\nCommit a632b2a4c920 (\"ice: ethtool: Prohibit improper channel config\nfor DCB\") already disallow setting less queues than TCs.\n\nAnother case is if we first set less queues, and later update more TCs\nconfig due to LLDP, ice_vsi_cfg_tc() will failed but left dirty\nnum_txq/rxq and tc_cfg in vsi, that will cause invalid pointer access.\n\n[   95.968089] ice 0000:3b:00.1: More TCs defined than queues/rings allocated.\n[   95.968092] ice 0000:3b:00.1: Trying to use more Rx queues (8), than were allocated (1)!\n[   95.968093] ice 0000:3b:00.1: Failed to config TC for VSI index: 0\n[   95.969621] general protection fault: 0000 [#1] SMP NOPTI\n[   95.969705] CPU: 1 PID: 58405 Comm: lldpad Kdump: loaded Tainted: G     U  W  O     --------- -t - 4.18.0 #1\n[   95.969867] Hardware name: O.E.M/BC11SPSCB10, BIOS 8.23 12/30/2021\n[   95.969992] RIP: 0010:devm_kmalloc+0xa/0x60\n[   95.970052] Code: 5c ff ff ff 31 c0 5b 5d 41 5c c3 b8 f4 ff ff ff eb f4 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 89 d1 \u003c8b\u003e 97 60 02 00 00 48 8d 7e 18 48 39 f7 72 3f 55 89 ce 53 48 8b 4c\n[   95.970344] RSP: 0018:ffffc9003f553888 EFLAGS: 00010206\n[   95.970425] RAX: dead000000000200 RBX: ffffea003c425b00 RCX: 00000000006080c0\n[   95.970536] RDX: 00000000006080c0 RSI: 0000000000000200 RDI: dead000000000200\n[   95.970648] RBP: dead000000000200 R08: 00000000000463c0 R09: ffff888ffa900000\n[   95.970760] R10: 0000000000000000 R11: 0000000000000002 R12: ffff888ff6b40100\n[   95.970870] R13: ffff888ff6a55018 R14: 0000000000000000 R15: ffff888ff6a55460\n[   95.970981] FS:  00007f51b7d24700(0000) GS:ffff88903ee80000(0000) knlGS:0000000000000000\n[   95.971108] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[   95.971197] CR2: 00007fac5410d710 CR3: 0000000f2c1de002 CR4: 00000000007606e0\n[   95.971309] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n[   95.971419] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n[   95.971530] PKRU: 55555554\n[   95.971573] Call Trace:\n[   95.971622]  ice_setup_rx_ring+0x39/0x110 [ice]\n[   95.971695]  ice_vsi_setup_rx_rings+0x54/0x90 [ice]\n[   95.971774]  ice_vsi_open+0x25/0x120 [ice]\n[   95.971843]  ice_open_internal+0xb8/0x1f0 [ice]\n[   95.971919]  ice_ena_vsi+0x4f/0xd0 [ice]\n[   95.971987]  ice_dcb_ena_dis_vsi.constprop.5+0x29/0x90 [ice]\n[   95.972082]  ice_pf_dcb_cfg+0x29a/0x380 [ice]\n[   95.972154]  ice_dcbnl_setets+0x174/0x1b0 [ice]\n[   95.972220]  dcbnl_ieee_set+0x89/0x230\n[   95.972279]  ? dcbnl_ieee_del+0x150/0x150\n[   95.972341]  dcb_doit+0x124/0x1b0\n[   95.972392]  rtnetlink_rcv_msg+0x243/0x2f0\n[   95.972457]  ? dcb_doit+0x14d/0x1b0\n[   95.972510]  ? __kmalloc_node_track_caller+0x1d3/0x280\n[   95.972591]  ? rtnl_calcit.isra.31+0x100/0x100\n[   95.972661]  netlink_rcv_skb+0xcf/0xf0\n[   95.972720]  netlink_unicast+0x16d/0x220\n[   95.972781]  netlink_sendmsg+0x2ba/0x3a0\n[   95.975891]  sock_sendmsg+0x4c/0x50\n[   95.979032]  ___sys_sendmsg+0x2e4/0x300\n[   95.982147]  ? kmem_cache_alloc+0x13e/0x190\n[   95.985242]  ? __wake_up_common_lock+0x79/0x90\n[   95.988338]  ? __check_object_size+0xac/0x1b0\n[   95.991440]  ? _copy_to_user+0x22/0x30\n[   95.994539]  ? move_addr_to_user+0xbb/0xd0\n[   95.997619]  ? __sys_sendmsg+0x53/0x80\n[   96.000664]  __sys_sendmsg+0x53/0x80\n[   96.003747]  do_syscall_64+0x5b/0x1d0\n[   96.006862]  entry_SYSCALL_64_after_hwframe+0x65/0xca\n\nOnly update num_txq/rxq when passed check, and restore tc_cfg if setup\nqueue map failed."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:43:32.249Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/7c945e5b4787db47d728120b56c934ba05f99864"
        },
        {
          "url": "https://git.kernel.org/stable/c/a509702cac95a8b450228a037c8542f57e538e5b"
        }
      ],
      "title": "ice: Fix crash by keep old cfg when update TCs more than queues",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48652",
    "datePublished": "2024-04-28T13:00:47.842Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T12:43:32.249Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26882 (GCVE-0-2024-26882)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Summary

In the Linux kernel, the following vulnerability has been resolved: net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() Apply the same fix than ones found in : 8d975c15c0cd ("ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()") 1ca1ba465e55 ("geneve: make sure to pull inner header in geneve_rx()") We have to save skb->network_header in a temporary variable in order to be able to recompute the network_header pointer after a pskb_inet_may_pull() call. pskb_inet_may_pull() makes sure the needed headers are in skb->head. syzbot reported: BUG: KMSAN: uninit-value in __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline] BUG: KMSAN: uninit-value in INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline] BUG: KMSAN: uninit-value in IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline] BUG: KMSAN: uninit-value in ip_tunnel_rcv+0xed9/0x2ed0 net/ipv4/ip_tunnel.c:409 __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline] INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline] IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline] ip_tunnel_rcv+0xed9/0x2ed0 net/ipv4/ip_tunnel.c:409 __ipgre_rcv+0x9bc/0xbc0 net/ipv4/ip_gre.c:389 ipgre_rcv net/ipv4/ip_gre.c:411 [inline] gre_rcv+0x423/0x19f0 net/ipv4/ip_gre.c:447 gre_rcv+0x2a4/0x390 net/ipv4/gre_demux.c:163 ip_protocol_deliver_rcu+0x264/0x1300 net/ipv4/ip_input.c:205 ip_local_deliver_finish+0x2b8/0x440 net/ipv4/ip_input.c:233 NF_HOOK include/linux/netfilter.h:314 [inline] ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254 dst_input include/net/dst.h:461 [inline] ip_rcv_finish net/ipv4/ip_input.c:449 [inline] NF_HOOK include/linux/netfilter.h:314 [inline] ip_rcv+0x46f/0x760 net/ipv4/ip_input.c:569 __netif_receive_skb_one_core net/core/dev.c:5534 [inline] __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5648 netif_receive_skb_internal net/core/dev.c:5734 [inline] netif_receive_skb+0x58/0x660 net/core/dev.c:5793 tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1556 tun_get_user+0x53b9/0x66e0 drivers/net/tun.c:2009 tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2055 call_write_iter include/linux/fs.h:2087 [inline] new_sync_write fs/read_write.c:497 [inline] vfs_write+0xb6b/0x1520 fs/read_write.c:590 ksys_write+0x20f/0x4c0 fs/read_write.c:643 __do_sys_write fs/read_write.c:655 [inline] __se_sys_write fs/read_write.c:652 [inline] __x64_sys_write+0x93/0xd0 fs/read_write.c:652 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x63/0x6b Uninit was created at: __alloc_pages+0x9a6/0xe00 mm/page_alloc.c:4590 alloc_pages_mpol+0x62b/0x9d0 mm/mempolicy.c:2133 alloc_pages+0x1be/0x1e0 mm/mempolicy.c:2204 skb_page_frag_refill+0x2bf/0x7c0 net/core/sock.c:2909 tun_build_skb drivers/net/tun.c:1686 [inline] tun_get_user+0xe0a/0x66e0 drivers/net/tun.c:1826 tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2055 call_write_iter include/linux/fs.h:2087 [inline] new_sync_write fs/read_write.c:497 [inline] vfs_write+0xb6b/0x1520 fs/read_write.c:590 ksys_write+0x20f/0x4c0 fs/read_write.c:643 __do_sys_write fs/read_write.c:655 [inline] __se_sys_write fs/read_write.c:652 [inline] __x64_sys_write+0x93/0xd0 fs/read_write.c:652 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x63/0x6b

References

►

URL

Tags

	https://git.kernel.org/stable/c/ec6bb01e02cbd47781dd90775b631a1dc4bd9d2b
	https://git.kernel.org/stable/c/77fd5294ea09b21f6772ac954a121b87323cec80
	https://git.kernel.org/stable/c/5c03387021cfa3336b97e0dcba38029917a8af2a
	https://git.kernel.org/stable/c/60044ab84836359534bd7153b92e9c1584140e4a
	https://git.kernel.org/stable/c/c4c857723b37c20651300b3de4ff25059848b4b0
	https://git.kernel.org/stable/c/f6723d8dbfdc10c784a56748f86a9a3cd410dbd5
	https://git.kernel.org/stable/c/ca914f1cdee8a85799942c9b0ce5015bbd6844e1
	https://git.kernel.org/stable/c/b0ec2abf98267f14d032102551581c833b0659d3

Impacted products

Vendor

Product

Version

►

Linux

Version: c54419321455631079c7d6e60bc732dd0c5914c5
Version: c54419321455631079c7d6e60bc732dd0c5914c5
Version: c54419321455631079c7d6e60bc732dd0c5914c5
Version: c54419321455631079c7d6e60bc732dd0c5914c5
Version: c54419321455631079c7d6e60bc732dd0c5914c5
Version: c54419321455631079c7d6e60bc732dd0c5914c5
Version: c54419321455631079c7d6e60bc732dd0c5914c5
Version: c54419321455631079c7d6e60bc732dd0c5914c5

Linux

Version: 3.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "LOW",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26882",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-16T18:00:36.614107Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-08T21:14:07.724Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-12-20T13:06:43.371Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ec6bb01e02cbd47781dd90775b631a1dc4bd9d2b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/77fd5294ea09b21f6772ac954a121b87323cec80"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5c03387021cfa3336b97e0dcba38029917a8af2a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/60044ab84836359534bd7153b92e9c1584140e4a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c4c857723b37c20651300b3de4ff25059848b4b0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f6723d8dbfdc10c784a56748f86a9a3cd410dbd5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ca914f1cdee8a85799942c9b0ce5015bbd6844e1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b0ec2abf98267f14d032102551581c833b0659d3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "url": "https://security.netapp.com/advisory/ntap-20241220-0002/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/ipv4/ip_tunnel.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ec6bb01e02cbd47781dd90775b631a1dc4bd9d2b",
              "status": "affected",
              "version": "c54419321455631079c7d6e60bc732dd0c5914c5",
              "versionType": "git"
            },
            {
              "lessThan": "77fd5294ea09b21f6772ac954a121b87323cec80",
              "status": "affected",
              "version": "c54419321455631079c7d6e60bc732dd0c5914c5",
              "versionType": "git"
            },
            {
              "lessThan": "5c03387021cfa3336b97e0dcba38029917a8af2a",
              "status": "affected",
              "version": "c54419321455631079c7d6e60bc732dd0c5914c5",
              "versionType": "git"
            },
            {
              "lessThan": "60044ab84836359534bd7153b92e9c1584140e4a",
              "status": "affected",
              "version": "c54419321455631079c7d6e60bc732dd0c5914c5",
              "versionType": "git"
            },
            {
              "lessThan": "c4c857723b37c20651300b3de4ff25059848b4b0",
              "status": "affected",
              "version": "c54419321455631079c7d6e60bc732dd0c5914c5",
              "versionType": "git"
            },
            {
              "lessThan": "f6723d8dbfdc10c784a56748f86a9a3cd410dbd5",
              "status": "affected",
              "version": "c54419321455631079c7d6e60bc732dd0c5914c5",
              "versionType": "git"
            },
            {
              "lessThan": "ca914f1cdee8a85799942c9b0ce5015bbd6844e1",
              "status": "affected",
              "version": "c54419321455631079c7d6e60bc732dd0c5914c5",
              "versionType": "git"
            },
            {
              "lessThan": "b0ec2abf98267f14d032102551581c833b0659d3",
              "status": "affected",
              "version": "c54419321455631079c7d6e60bc732dd0c5914c5",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/ipv4/ip_tunnel.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.10"
            },
            {
              "lessThan": "3.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "3.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()\n\nApply the same fix than ones found in :\n\n8d975c15c0cd (\"ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()\")\n1ca1ba465e55 (\"geneve: make sure to pull inner header in geneve_rx()\")\n\nWe have to save skb-\u003enetwork_header in a temporary variable\nin order to be able to recompute the network_header pointer\nafter a pskb_inet_may_pull() call.\n\npskb_inet_may_pull() makes sure the needed headers are in skb-\u003ehead.\n\nsyzbot reported:\nBUG: KMSAN: uninit-value in __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n BUG: KMSAN: uninit-value in INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n BUG: KMSAN: uninit-value in IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n BUG: KMSAN: uninit-value in ip_tunnel_rcv+0xed9/0x2ed0 net/ipv4/ip_tunnel.c:409\n  __INET_ECN_decapsulate include/net/inet_ecn.h:253 [inline]\n  INET_ECN_decapsulate include/net/inet_ecn.h:275 [inline]\n  IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n  ip_tunnel_rcv+0xed9/0x2ed0 net/ipv4/ip_tunnel.c:409\n  __ipgre_rcv+0x9bc/0xbc0 net/ipv4/ip_gre.c:389\n  ipgre_rcv net/ipv4/ip_gre.c:411 [inline]\n  gre_rcv+0x423/0x19f0 net/ipv4/ip_gre.c:447\n  gre_rcv+0x2a4/0x390 net/ipv4/gre_demux.c:163\n  ip_protocol_deliver_rcu+0x264/0x1300 net/ipv4/ip_input.c:205\n  ip_local_deliver_finish+0x2b8/0x440 net/ipv4/ip_input.c:233\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254\n  dst_input include/net/dst.h:461 [inline]\n  ip_rcv_finish net/ipv4/ip_input.c:449 [inline]\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip_rcv+0x46f/0x760 net/ipv4/ip_input.c:569\n  __netif_receive_skb_one_core net/core/dev.c:5534 [inline]\n  __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5648\n  netif_receive_skb_internal net/core/dev.c:5734 [inline]\n  netif_receive_skb+0x58/0x660 net/core/dev.c:5793\n  tun_rx_batched+0x3ee/0x980 drivers/net/tun.c:1556\n  tun_get_user+0x53b9/0x66e0 drivers/net/tun.c:2009\n  tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2055\n  call_write_iter include/linux/fs.h:2087 [inline]\n  new_sync_write fs/read_write.c:497 [inline]\n  vfs_write+0xb6b/0x1520 fs/read_write.c:590\n  ksys_write+0x20f/0x4c0 fs/read_write.c:643\n  __do_sys_write fs/read_write.c:655 [inline]\n  __se_sys_write fs/read_write.c:652 [inline]\n  __x64_sys_write+0x93/0xd0 fs/read_write.c:652\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n  __alloc_pages+0x9a6/0xe00 mm/page_alloc.c:4590\n  alloc_pages_mpol+0x62b/0x9d0 mm/mempolicy.c:2133\n  alloc_pages+0x1be/0x1e0 mm/mempolicy.c:2204\n  skb_page_frag_refill+0x2bf/0x7c0 net/core/sock.c:2909\n  tun_build_skb drivers/net/tun.c:1686 [inline]\n  tun_get_user+0xe0a/0x66e0 drivers/net/tun.c:1826\n  tun_chr_write_iter+0x3af/0x5d0 drivers/net/tun.c:2055\n  call_write_iter include/linux/fs.h:2087 [inline]\n  new_sync_write fs/read_write.c:497 [inline]\n  vfs_write+0xb6b/0x1520 fs/read_write.c:590\n  ksys_write+0x20f/0x4c0 fs/read_write.c:643\n  __do_sys_write fs/read_write.c:655 [inline]\n  __se_sys_write fs/read_write.c:652 [inline]\n  __x64_sys_write+0x93/0xd0 fs/read_write.c:652\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:47.122Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ec6bb01e02cbd47781dd90775b631a1dc4bd9d2b"
        },
        {
          "url": "https://git.kernel.org/stable/c/77fd5294ea09b21f6772ac954a121b87323cec80"
        },
        {
          "url": "https://git.kernel.org/stable/c/5c03387021cfa3336b97e0dcba38029917a8af2a"
        },
        {
          "url": "https://git.kernel.org/stable/c/60044ab84836359534bd7153b92e9c1584140e4a"
        },
        {
          "url": "https://git.kernel.org/stable/c/c4c857723b37c20651300b3de4ff25059848b4b0"
        },
        {
          "url": "https://git.kernel.org/stable/c/f6723d8dbfdc10c784a56748f86a9a3cd410dbd5"
        },
        {
          "url": "https://git.kernel.org/stable/c/ca914f1cdee8a85799942c9b0ce5015bbd6844e1"
        },
        {
          "url": "https://git.kernel.org/stable/c/b0ec2abf98267f14d032102551581c833b0659d3"
        }
      ],
      "title": "net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26882",
    "datePublished": "2024-04-17T10:27:38.389Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:47.122Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48695 (GCVE-0-2022-48695)

Vulnerability from cvelistv5

Published

2024-05-03 17:44

Modified

2025-05-21 08:43

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix use-after-free warning Fix the following use-after-free warning which is observed during controller reset: refcount_t: underflow; use-after-free. WARNING: CPU: 23 PID: 5399 at lib/refcount.c:28 refcount_warn_saturate+0xa6/0xf0

References

►

URL

Tags

	https://git.kernel.org/stable/c/b8fc9e91b931215110ba824d1a2983c5f60b6f82
	https://git.kernel.org/stable/c/d4959d09b76eb7a4146f5133962b88d3bddb63d6
	https://git.kernel.org/stable/c/82efb917eeb27454dc4c6fe26432fc8f6c75bc16
	https://git.kernel.org/stable/c/5682c94644fde72f72bded6580c38189ffc856b5
	https://git.kernel.org/stable/c/ea10a652ad2ae2cf3eced6f632a5c98f26727057
	https://git.kernel.org/stable/c/6229fa494a5949be209bc73afbc5d0a749c2e3c7
	https://git.kernel.org/stable/c/41acb064c4e013808bc7d5fc1b506fa449425b0b
	https://git.kernel.org/stable/c/991df3dd5144f2e6b1c38b8d20ed3d4d21e20b34

Impacted products

Vendor

Product

Version

►

Linux

Version: 146b16c8071f5f6c67895d15beeee1163f5107c4
Version: 146b16c8071f5f6c67895d15beeee1163f5107c4
Version: 146b16c8071f5f6c67895d15beeee1163f5107c4
Version: 146b16c8071f5f6c67895d15beeee1163f5107c4
Version: 146b16c8071f5f6c67895d15beeee1163f5107c4
Version: 146b16c8071f5f6c67895d15beeee1163f5107c4
Version: 146b16c8071f5f6c67895d15beeee1163f5107c4
Version: 146b16c8071f5f6c67895d15beeee1163f5107c4

Linux

Version: 4.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48695",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:39:45.670412Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-21T21:27:24.160Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.812Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b8fc9e91b931215110ba824d1a2983c5f60b6f82"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d4959d09b76eb7a4146f5133962b88d3bddb63d6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/82efb917eeb27454dc4c6fe26432fc8f6c75bc16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5682c94644fde72f72bded6580c38189ffc856b5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ea10a652ad2ae2cf3eced6f632a5c98f26727057"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6229fa494a5949be209bc73afbc5d0a749c2e3c7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/41acb064c4e013808bc7d5fc1b506fa449425b0b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/991df3dd5144f2e6b1c38b8d20ed3d4d21e20b34"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/mpt3sas/mpt3sas_scsih.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b8fc9e91b931215110ba824d1a2983c5f60b6f82",
              "status": "affected",
              "version": "146b16c8071f5f6c67895d15beeee1163f5107c4",
              "versionType": "git"
            },
            {
              "lessThan": "d4959d09b76eb7a4146f5133962b88d3bddb63d6",
              "status": "affected",
              "version": "146b16c8071f5f6c67895d15beeee1163f5107c4",
              "versionType": "git"
            },
            {
              "lessThan": "82efb917eeb27454dc4c6fe26432fc8f6c75bc16",
              "status": "affected",
              "version": "146b16c8071f5f6c67895d15beeee1163f5107c4",
              "versionType": "git"
            },
            {
              "lessThan": "5682c94644fde72f72bded6580c38189ffc856b5",
              "status": "affected",
              "version": "146b16c8071f5f6c67895d15beeee1163f5107c4",
              "versionType": "git"
            },
            {
              "lessThan": "ea10a652ad2ae2cf3eced6f632a5c98f26727057",
              "status": "affected",
              "version": "146b16c8071f5f6c67895d15beeee1163f5107c4",
              "versionType": "git"
            },
            {
              "lessThan": "6229fa494a5949be209bc73afbc5d0a749c2e3c7",
              "status": "affected",
              "version": "146b16c8071f5f6c67895d15beeee1163f5107c4",
              "versionType": "git"
            },
            {
              "lessThan": "41acb064c4e013808bc7d5fc1b506fa449425b0b",
              "status": "affected",
              "version": "146b16c8071f5f6c67895d15beeee1163f5107c4",
              "versionType": "git"
            },
            {
              "lessThan": "991df3dd5144f2e6b1c38b8d20ed3d4d21e20b34",
              "status": "affected",
              "version": "146b16c8071f5f6c67895d15beeee1163f5107c4",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/mpt3sas/mpt3sas_scsih.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.4"
            },
            {
              "lessThan": "4.4",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.328",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.258",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.328",
                  "versionStartIncluding": "4.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.293",
                  "versionStartIncluding": "4.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.258",
                  "versionStartIncluding": "4.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "versionStartIncluding": "4.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "versionStartIncluding": "4.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "4.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "4.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "4.4",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: mpt3sas: Fix use-after-free warning\n\nFix the following use-after-free warning which is observed during\ncontroller reset:\n\nrefcount_t: underflow; use-after-free.\nWARNING: CPU: 23 PID: 5399 at lib/refcount.c:28 refcount_warn_saturate+0xa6/0xf0"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-21T08:43:47.691Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b8fc9e91b931215110ba824d1a2983c5f60b6f82"
        },
        {
          "url": "https://git.kernel.org/stable/c/d4959d09b76eb7a4146f5133962b88d3bddb63d6"
        },
        {
          "url": "https://git.kernel.org/stable/c/82efb917eeb27454dc4c6fe26432fc8f6c75bc16"
        },
        {
          "url": "https://git.kernel.org/stable/c/5682c94644fde72f72bded6580c38189ffc856b5"
        },
        {
          "url": "https://git.kernel.org/stable/c/ea10a652ad2ae2cf3eced6f632a5c98f26727057"
        },
        {
          "url": "https://git.kernel.org/stable/c/6229fa494a5949be209bc73afbc5d0a749c2e3c7"
        },
        {
          "url": "https://git.kernel.org/stable/c/41acb064c4e013808bc7d5fc1b506fa449425b0b"
        },
        {
          "url": "https://git.kernel.org/stable/c/991df3dd5144f2e6b1c38b8d20ed3d4d21e20b34"
        }
      ],
      "title": "scsi: mpt3sas: Fix use-after-free warning",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48695",
    "datePublished": "2024-05-03T17:44:55.829Z",
    "dateReserved": "2024-05-03T14:55:07.145Z",
    "dateUpdated": "2025-05-21T08:43:47.691Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26917 (GCVE-0-2024-26917)

Vulnerability from cvelistv5

Published

2024-04-17 15:59

Modified

2025-05-04 12:55

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: fcoe: Fix potential deadlock on &fip->ctlr_lock" This reverts commit 1a1975551943f681772720f639ff42fbaa746212. This commit causes interrupts to be lost for FCoE devices, since it changed sping locks from "bh" to "irqsave". Instead, a work queue should be used, and will be addressed in a separate commit.

References

►

URL

Tags

	https://git.kernel.org/stable/c/94a600226b6d0ef065ee84024b450b566c5a87d6
	https://git.kernel.org/stable/c/2209fc6e3d7727d787dc6ef9baa1e9eae6b1295b
	https://git.kernel.org/stable/c/7d4e19f7ff644c5b79e8271df8ac2e549b436a5b
	https://git.kernel.org/stable/c/5b8f473c4de95c056c1c767b1ad48c191544f6a5
	https://git.kernel.org/stable/c/6bb22ac1d11d7d20f91e7fd2e657a9e5f6db65e0
	https://git.kernel.org/stable/c/2996c7e97ea7cf4c1838a1b1dbc0885934113783
	https://git.kernel.org/stable/c/25675159040bffc7992d5163f3f33ba7d0142f21
	https://git.kernel.org/stable/c/977fe773dcc7098d8eaf4ee6382cb51e13e784cb

Impacted products

Vendor

Product

Version

►

Linux

Version: 264eae2f523d2aae38188facb4ece893023f25da
Version: d2bf25674cea74b865d367d09be5dfe9aff5922a
Version: 9cce8ef7a6fa858bbcacd8679a5ca5a4fd3a6df3
Version: 076fb40cf27ab9232d8cce1f007e663e46705302
Version: 5a5fb3b1754fa2b4db95f0151b4af0fb6f8918ec
Version: 1a1975551943f681772720f639ff42fbaa746212
Version: 1a1975551943f681772720f639ff42fbaa746212
Version: 1a1975551943f681772720f639ff42fbaa746212
Version: 4ea46b479a00dd232f0dbc81fdc27f9330ecb3ad
Version: 694ddc5bf35a5b6f9acb6e4724324c910a1237f1
Version: 6c5d7242bcf2154e9576e5eb2a98c6984ca5ea9a

Linux

Version: 6.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.463Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/94a600226b6d0ef065ee84024b450b566c5a87d6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2209fc6e3d7727d787dc6ef9baa1e9eae6b1295b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7d4e19f7ff644c5b79e8271df8ac2e549b436a5b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5b8f473c4de95c056c1c767b1ad48c191544f6a5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6bb22ac1d11d7d20f91e7fd2e657a9e5f6db65e0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2996c7e97ea7cf4c1838a1b1dbc0885934113783"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/25675159040bffc7992d5163f3f33ba7d0142f21"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/977fe773dcc7098d8eaf4ee6382cb51e13e784cb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26917",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:47:50.224233Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:32:51.098Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/fcoe/fcoe_ctlr.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "94a600226b6d0ef065ee84024b450b566c5a87d6",
              "status": "affected",
              "version": "264eae2f523d2aae38188facb4ece893023f25da",
              "versionType": "git"
            },
            {
              "lessThan": "2209fc6e3d7727d787dc6ef9baa1e9eae6b1295b",
              "status": "affected",
              "version": "d2bf25674cea74b865d367d09be5dfe9aff5922a",
              "versionType": "git"
            },
            {
              "lessThan": "7d4e19f7ff644c5b79e8271df8ac2e549b436a5b",
              "status": "affected",
              "version": "9cce8ef7a6fa858bbcacd8679a5ca5a4fd3a6df3",
              "versionType": "git"
            },
            {
              "lessThan": "5b8f473c4de95c056c1c767b1ad48c191544f6a5",
              "status": "affected",
              "version": "076fb40cf27ab9232d8cce1f007e663e46705302",
              "versionType": "git"
            },
            {
              "lessThan": "6bb22ac1d11d7d20f91e7fd2e657a9e5f6db65e0",
              "status": "affected",
              "version": "5a5fb3b1754fa2b4db95f0151b4af0fb6f8918ec",
              "versionType": "git"
            },
            {
              "lessThan": "2996c7e97ea7cf4c1838a1b1dbc0885934113783",
              "status": "affected",
              "version": "1a1975551943f681772720f639ff42fbaa746212",
              "versionType": "git"
            },
            {
              "lessThan": "25675159040bffc7992d5163f3f33ba7d0142f21",
              "status": "affected",
              "version": "1a1975551943f681772720f639ff42fbaa746212",
              "versionType": "git"
            },
            {
              "lessThan": "977fe773dcc7098d8eaf4ee6382cb51e13e784cb",
              "status": "affected",
              "version": "1a1975551943f681772720f639ff42fbaa746212",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "4ea46b479a00dd232f0dbc81fdc27f9330ecb3ad",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "694ddc5bf35a5b6f9acb6e4724324c910a1237f1",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "6c5d7242bcf2154e9576e5eb2a98c6984ca5ea9a",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/fcoe/fcoe_ctlr.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.6"
            },
            {
              "lessThan": "6.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.307",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.269",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.79",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.307",
                  "versionStartIncluding": "4.19.295",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.269",
                  "versionStartIncluding": "5.4.257",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "versionStartIncluding": "5.10.195",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "5.15.132",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.79",
                  "versionStartIncluding": "6.1.53",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "versionStartIncluding": "6.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "6.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "6.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.14.326",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "6.4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "6.5.3",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: Revert \"scsi: fcoe: Fix potential deadlock on \u0026fip-\u003ectlr_lock\"\n\nThis reverts commit 1a1975551943f681772720f639ff42fbaa746212.\n\nThis commit causes interrupts to be lost for FCoE devices, since it changed\nsping locks from \"bh\" to \"irqsave\".\n\nInstead, a work queue should be used, and will be addressed in a separate\ncommit."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:55:09.699Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/94a600226b6d0ef065ee84024b450b566c5a87d6"
        },
        {
          "url": "https://git.kernel.org/stable/c/2209fc6e3d7727d787dc6ef9baa1e9eae6b1295b"
        },
        {
          "url": "https://git.kernel.org/stable/c/7d4e19f7ff644c5b79e8271df8ac2e549b436a5b"
        },
        {
          "url": "https://git.kernel.org/stable/c/5b8f473c4de95c056c1c767b1ad48c191544f6a5"
        },
        {
          "url": "https://git.kernel.org/stable/c/6bb22ac1d11d7d20f91e7fd2e657a9e5f6db65e0"
        },
        {
          "url": "https://git.kernel.org/stable/c/2996c7e97ea7cf4c1838a1b1dbc0885934113783"
        },
        {
          "url": "https://git.kernel.org/stable/c/25675159040bffc7992d5163f3f33ba7d0142f21"
        },
        {
          "url": "https://git.kernel.org/stable/c/977fe773dcc7098d8eaf4ee6382cb51e13e784cb"
        }
      ],
      "title": "scsi: Revert \"scsi: fcoe: Fix potential deadlock on \u0026fip-\u003ectlr_lock\"",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26917",
    "datePublished": "2024-04-17T15:59:26.340Z",
    "dateReserved": "2024-02-19T14:20:24.193Z",
    "dateUpdated": "2025-05-04T12:55:09.699Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52620 (GCVE-0-2023-52620)

Vulnerability from cvelistv5

Published

2024-03-21 10:43

Modified

2025-05-04 07:40

Severity ?

2.5 (Low) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Summary

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow timeout for anonymous sets Never used from userspace, disallow these parameters.

References

►

URL

Tags

	https://git.kernel.org/stable/c/116b0e8e4673a5faa8a739a19b467010c4d3058c
	https://git.kernel.org/stable/c/49ce99ae43314d887153e07cec8bb6a647a19268
	https://git.kernel.org/stable/c/6f3ae02bbb62f151b19162d5fdc9fe3d48450323
	https://git.kernel.org/stable/c/00b19ee0dcc1aef06294471ab489bae26d94524e
	https://git.kernel.org/stable/c/b7be6c737a179a76901c872f6b4c1d00552d9a1b
	https://git.kernel.org/stable/c/e26d3009efda338f19016df4175f354a9bd0a4ab

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "LOCAL",
              "availabilityImpact": "LOW",
              "baseScore": 2.5,
              "baseSeverity": "LOW",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-52620",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-26T20:33:31.634112Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-06T20:01:21.818Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.362Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/116b0e8e4673a5faa8a739a19b467010c4d3058c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/49ce99ae43314d887153e07cec8bb6a647a19268"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6f3ae02bbb62f151b19162d5fdc9fe3d48450323"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/00b19ee0dcc1aef06294471ab489bae26d94524e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b7be6c737a179a76901c872f6b4c1d00552d9a1b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e26d3009efda338f19016df4175f354a9bd0a4ab"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/netfilter/nf_tables_api.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "116b0e8e4673a5faa8a739a19b467010c4d3058c",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "49ce99ae43314d887153e07cec8bb6a647a19268",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6f3ae02bbb62f151b19162d5fdc9fe3d48450323",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "00b19ee0dcc1aef06294471ab489bae26d94524e",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b7be6c737a179a76901c872f6b4c1d00552d9a1b",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "e26d3009efda338f19016df4175f354a9bd0a4ab",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/netfilter/nf_tables_api.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.312",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.151",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.81",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.4",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.312",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.151",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.81",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.4",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: disallow timeout for anonymous sets\n\nNever used from userspace, disallow these parameters."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:40:07.274Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/116b0e8e4673a5faa8a739a19b467010c4d3058c"
        },
        {
          "url": "https://git.kernel.org/stable/c/49ce99ae43314d887153e07cec8bb6a647a19268"
        },
        {
          "url": "https://git.kernel.org/stable/c/6f3ae02bbb62f151b19162d5fdc9fe3d48450323"
        },
        {
          "url": "https://git.kernel.org/stable/c/00b19ee0dcc1aef06294471ab489bae26d94524e"
        },
        {
          "url": "https://git.kernel.org/stable/c/b7be6c737a179a76901c872f6b4c1d00552d9a1b"
        },
        {
          "url": "https://git.kernel.org/stable/c/e26d3009efda338f19016df4175f354a9bd0a4ab"
        }
      ],
      "title": "netfilter: nf_tables: disallow timeout for anonymous sets",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52620",
    "datePublished": "2024-03-21T10:43:42.854Z",
    "dateReserved": "2024-03-06T09:52:12.090Z",
    "dateUpdated": "2025-05-04T07:40:07.274Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48697 (GCVE-0-2022-48697)

Vulnerability from cvelistv5

Published

2024-05-03 15:10

Modified

2025-05-04 08:21

Severity ?

5.3 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Summary

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a use-after-free Fix the following use-after-free complaint triggered by blktests nvme/004: BUG: KASAN: user-memory-access in blk_mq_complete_request_remote+0xac/0x350 Read of size 4 at addr 0000607bd1835943 by task kworker/13:1/460 Workqueue: nvmet-wq nvme_loop_execute_work [nvme_loop] Call Trace: show_stack+0x52/0x58 dump_stack_lvl+0x49/0x5e print_report.cold+0x36/0x1e2 kasan_report+0xb9/0xf0 __asan_load4+0x6b/0x80 blk_mq_complete_request_remote+0xac/0x350 nvme_loop_queue_response+0x1df/0x275 [nvme_loop] __nvmet_req_complete+0x132/0x4f0 [nvmet] nvmet_req_complete+0x15/0x40 [nvmet] nvmet_execute_io_connect+0x18a/0x1f0 [nvmet] nvme_loop_execute_work+0x20/0x30 [nvme_loop] process_one_work+0x56e/0xa70 worker_thread+0x2d1/0x640 kthread+0x183/0x1c0 ret_from_fork+0x1f/0x30

References

►

URL

Tags

	https://git.kernel.org/stable/c/17f121ca3ec6be0fb32d77c7f65362934a38cc8e
	https://git.kernel.org/stable/c/8d66989b5f7bb28bba2f8e1e2ffc8bfef4a10717
	https://git.kernel.org/stable/c/be01f1c988757b95f11f090a9f491365670a522b
	https://git.kernel.org/stable/c/ebf46da50beb78066674354ad650606a467e33fa
	https://git.kernel.org/stable/c/4484ce97a78171668c402e0c45db7f760aea8060
	https://git.kernel.org/stable/c/6a02a61e81c231cc5c680c5dbf8665275147ac52

Impacted products

Vendor

Product

Version

►

Linux

Version: a07b4970f464f13640e28e16dad6cfa33647cc99
Version: a07b4970f464f13640e28e16dad6cfa33647cc99
Version: a07b4970f464f13640e28e16dad6cfa33647cc99
Version: a07b4970f464f13640e28e16dad6cfa33647cc99
Version: a07b4970f464f13640e28e16dad6cfa33647cc99
Version: a07b4970f464f13640e28e16dad6cfa33647cc99

Linux

Version: 4.8

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "LOW",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48697",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T20:35:15.754942Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T15:52:41.996Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.813Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/17f121ca3ec6be0fb32d77c7f65362934a38cc8e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8d66989b5f7bb28bba2f8e1e2ffc8bfef4a10717"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/be01f1c988757b95f11f090a9f491365670a522b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ebf46da50beb78066674354ad650606a467e33fa"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4484ce97a78171668c402e0c45db7f760aea8060"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6a02a61e81c231cc5c680c5dbf8665275147ac52"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/nvme/target/core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "17f121ca3ec6be0fb32d77c7f65362934a38cc8e",
              "status": "affected",
              "version": "a07b4970f464f13640e28e16dad6cfa33647cc99",
              "versionType": "git"
            },
            {
              "lessThan": "8d66989b5f7bb28bba2f8e1e2ffc8bfef4a10717",
              "status": "affected",
              "version": "a07b4970f464f13640e28e16dad6cfa33647cc99",
              "versionType": "git"
            },
            {
              "lessThan": "be01f1c988757b95f11f090a9f491365670a522b",
              "status": "affected",
              "version": "a07b4970f464f13640e28e16dad6cfa33647cc99",
              "versionType": "git"
            },
            {
              "lessThan": "ebf46da50beb78066674354ad650606a467e33fa",
              "status": "affected",
              "version": "a07b4970f464f13640e28e16dad6cfa33647cc99",
              "versionType": "git"
            },
            {
              "lessThan": "4484ce97a78171668c402e0c45db7f760aea8060",
              "status": "affected",
              "version": "a07b4970f464f13640e28e16dad6cfa33647cc99",
              "versionType": "git"
            },
            {
              "lessThan": "6a02a61e81c231cc5c680c5dbf8665275147ac52",
              "status": "affected",
              "version": "a07b4970f464f13640e28e16dad6cfa33647cc99",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/nvme/target/core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.8"
            },
            {
              "lessThan": "4.8",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.260",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.260",
                  "versionStartIncluding": "4.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "versionStartIncluding": "4.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "versionStartIncluding": "4.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "4.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "4.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "4.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvmet: fix a use-after-free\n\nFix the following use-after-free complaint triggered by blktests nvme/004:\n\nBUG: KASAN: user-memory-access in blk_mq_complete_request_remote+0xac/0x350\nRead of size 4 at addr 0000607bd1835943 by task kworker/13:1/460\nWorkqueue: nvmet-wq nvme_loop_execute_work [nvme_loop]\nCall Trace:\n show_stack+0x52/0x58\n dump_stack_lvl+0x49/0x5e\n print_report.cold+0x36/0x1e2\n kasan_report+0xb9/0xf0\n __asan_load4+0x6b/0x80\n blk_mq_complete_request_remote+0xac/0x350\n nvme_loop_queue_response+0x1df/0x275 [nvme_loop]\n __nvmet_req_complete+0x132/0x4f0 [nvmet]\n nvmet_req_complete+0x15/0x40 [nvmet]\n nvmet_execute_io_connect+0x18a/0x1f0 [nvmet]\n nvme_loop_execute_work+0x20/0x30 [nvme_loop]\n process_one_work+0x56e/0xa70\n worker_thread+0x2d1/0x640\n kthread+0x183/0x1c0\n ret_from_fork+0x1f/0x30"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:16.522Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/17f121ca3ec6be0fb32d77c7f65362934a38cc8e"
        },
        {
          "url": "https://git.kernel.org/stable/c/8d66989b5f7bb28bba2f8e1e2ffc8bfef4a10717"
        },
        {
          "url": "https://git.kernel.org/stable/c/be01f1c988757b95f11f090a9f491365670a522b"
        },
        {
          "url": "https://git.kernel.org/stable/c/ebf46da50beb78066674354ad650606a467e33fa"
        },
        {
          "url": "https://git.kernel.org/stable/c/4484ce97a78171668c402e0c45db7f760aea8060"
        },
        {
          "url": "https://git.kernel.org/stable/c/6a02a61e81c231cc5c680c5dbf8665275147ac52"
        }
      ],
      "title": "nvmet: fix a use-after-free",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48697",
    "datePublished": "2024-05-03T15:10:30.963Z",
    "dateReserved": "2024-05-03T14:55:07.145Z",
    "dateUpdated": "2025-05-04T08:21:16.522Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48640 (GCVE-0-2022-48640)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: bonding: fix NULL deref in bond_rr_gen_slave_id Fix a NULL dereference of the struct bonding.rr_tx_counter member because if a bond is initially created with an initial mode != zero (Round Robin) the memory required for the counter is never created and when the mode is changed there is never any attempt to verify the memory is allocated upon switching modes. This causes the following Oops on an aarch64 machine: [ 334.686773] Unable to handle kernel paging request at virtual address ffff2c91ac905000 [ 334.694703] Mem abort info: [ 334.697486] ESR = 0x0000000096000004 [ 334.701234] EC = 0x25: DABT (current EL), IL = 32 bits [ 334.706536] SET = 0, FnV = 0 [ 334.709579] EA = 0, S1PTW = 0 [ 334.712719] FSC = 0x04: level 0 translation fault [ 334.717586] Data abort info: [ 334.720454] ISV = 0, ISS = 0x00000004 [ 334.724288] CM = 0, WnR = 0 [ 334.727244] swapper pgtable: 4k pages, 48-bit VAs, pgdp=000008044d662000 [ 334.733944] [ffff2c91ac905000] pgd=0000000000000000, p4d=0000000000000000 [ 334.740734] Internal error: Oops: 96000004 [#1] SMP [ 334.745602] Modules linked in: bonding tls veth rfkill sunrpc arm_spe_pmu vfat fat acpi_ipmi ipmi_ssif ixgbe igb i40e mdio ipmi_devintf ipmi_msghandler arm_cmn arm_dsu_pmu cppc_cpufreq acpi_tad fuse zram crct10dif_ce ast ghash_ce sbsa_gwdt nvme drm_vram_helper drm_ttm_helper nvme_core ttm xgene_hwmon [ 334.772217] CPU: 7 PID: 2214 Comm: ping Not tainted 6.0.0-rc4-00133-g64ae13ed4784 #4 [ 334.779950] Hardware name: GIGABYTE R272-P31-00/MP32-AR1-00, BIOS F18v (SCP: 1.08.20211002) 12/01/2021 [ 334.789244] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 334.796196] pc : bond_rr_gen_slave_id+0x40/0x124 [bonding] [ 334.801691] lr : bond_xmit_roundrobin_slave_get+0x38/0xdc [bonding] [ 334.807962] sp : ffff8000221733e0 [ 334.811265] x29: ffff8000221733e0 x28: ffffdbac8572d198 x27: ffff80002217357c [ 334.818392] x26: 000000000000002a x25: ffffdbacb33ee000 x24: ffff07ff980fa000 [ 334.825519] x23: ffffdbacb2e398ba x22: ffff07ff98102000 x21: ffff07ff981029c0 [ 334.832646] x20: 0000000000000001 x19: ffff07ff981029c0 x18: 0000000000000014 [ 334.839773] x17: 0000000000000000 x16: ffffdbacb1004364 x15: 0000aaaabe2f5a62 [ 334.846899] x14: ffff07ff8e55d968 x13: ffff07ff8e55db30 x12: 0000000000000000 [ 334.854026] x11: ffffdbacb21532e8 x10: 0000000000000001 x9 : ffffdbac857178ec [ 334.861153] x8 : ffff07ff9f6e5a28 x7 : 0000000000000000 x6 : 000000007c2b3742 [ 334.868279] x5 : ffff2c91ac905000 x4 : ffff2c91ac905000 x3 : ffff07ff9f554400 [ 334.875406] x2 : ffff2c91ac905000 x1 : 0000000000000001 x0 : ffff07ff981029c0 [ 334.882532] Call trace: [ 334.884967] bond_rr_gen_slave_id+0x40/0x124 [bonding] [ 334.890109] bond_xmit_roundrobin_slave_get+0x38/0xdc [bonding] [ 334.896033] __bond_start_xmit+0x128/0x3a0 [bonding] [ 334.901001] bond_start_xmit+0x54/0xb0 [bonding] [ 334.905622] dev_hard_start_xmit+0xb4/0x220 [ 334.909798] __dev_queue_xmit+0x1a0/0x720 [ 334.913799] arp_xmit+0x3c/0xbc [ 334.916932] arp_send_dst+0x98/0xd0 [ 334.920410] arp_solicit+0xe8/0x230 [ 334.923888] neigh_probe+0x60/0xb0 [ 334.927279] __neigh_event_send+0x3b0/0x470 [ 334.931453] neigh_resolve_output+0x70/0x90 [ 334.935626] ip_finish_output2+0x158/0x514 [ 334.939714] __ip_finish_output+0xac/0x1a4 [ 334.943800] ip_finish_output+0x40/0xfc [ 334.947626] ip_output+0xf8/0x1a4 [ 334.950931] ip_send_skb+0x5c/0x100 [ 334.954410] ip_push_pending_frames+0x3c/0x60 [ 334.958758] raw_sendmsg+0x458/0x6d0 [ 334.962325] inet_sendmsg+0x50/0x80 [ 334.965805] sock_sendmsg+0x60/0x6c [ 334.969286] __sys_sendto+0xc8/0x134 [ 334.972853] __arm64_sys_sendto+0x34/0x4c ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/ec3a6f4ffe556a28f6f5028bf7c4412557e7051b
	https://git.kernel.org/stable/c/2c8e8ab53acfc78da0b4a65f30cb5d306e7d78f7
	https://git.kernel.org/stable/c/0e400d602f46360752e4b32ce842dba3808e15e6

Impacted products

Vendor

Product

Version

►

Linux

Version: 848ca9182a7d25bb54955c3aab9a3a2742bf9678
Version: 848ca9182a7d25bb54955c3aab9a3a2742bf9678
Version: 848ca9182a7d25bb54955c3aab9a3a2742bf9678

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48640",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:41:02.395748Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:47:18.002Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.245Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ec3a6f4ffe556a28f6f5028bf7c4412557e7051b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2c8e8ab53acfc78da0b4a65f30cb5d306e7d78f7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0e400d602f46360752e4b32ce842dba3808e15e6"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/bonding/bond_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ec3a6f4ffe556a28f6f5028bf7c4412557e7051b",
              "status": "affected",
              "version": "848ca9182a7d25bb54955c3aab9a3a2742bf9678",
              "versionType": "git"
            },
            {
              "lessThan": "2c8e8ab53acfc78da0b4a65f30cb5d306e7d78f7",
              "status": "affected",
              "version": "848ca9182a7d25bb54955c3aab9a3a2742bf9678",
              "versionType": "git"
            },
            {
              "lessThan": "0e400d602f46360752e4b32ce842dba3808e15e6",
              "status": "affected",
              "version": "848ca9182a7d25bb54955c3aab9a3a2742bf9678",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/bonding/bond_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbonding: fix NULL deref in bond_rr_gen_slave_id\n\nFix a NULL dereference of the struct bonding.rr_tx_counter member because\nif a bond is initially created with an initial mode != zero (Round Robin)\nthe memory required for the counter is never created and when the mode is\nchanged there is never any attempt to verify the memory is allocated upon\nswitching modes.\n\nThis causes the following Oops on an aarch64 machine:\n    [  334.686773] Unable to handle kernel paging request at virtual address ffff2c91ac905000\n    [  334.694703] Mem abort info:\n    [  334.697486]   ESR = 0x0000000096000004\n    [  334.701234]   EC = 0x25: DABT (current EL), IL = 32 bits\n    [  334.706536]   SET = 0, FnV = 0\n    [  334.709579]   EA = 0, S1PTW = 0\n    [  334.712719]   FSC = 0x04: level 0 translation fault\n    [  334.717586] Data abort info:\n    [  334.720454]   ISV = 0, ISS = 0x00000004\n    [  334.724288]   CM = 0, WnR = 0\n    [  334.727244] swapper pgtable: 4k pages, 48-bit VAs, pgdp=000008044d662000\n    [  334.733944] [ffff2c91ac905000] pgd=0000000000000000, p4d=0000000000000000\n    [  334.740734] Internal error: Oops: 96000004 [#1] SMP\n    [  334.745602] Modules linked in: bonding tls veth rfkill sunrpc arm_spe_pmu vfat fat acpi_ipmi ipmi_ssif ixgbe igb i40e mdio ipmi_devintf ipmi_msghandler arm_cmn arm_dsu_pmu cppc_cpufreq acpi_tad fuse zram crct10dif_ce ast ghash_ce sbsa_gwdt nvme drm_vram_helper drm_ttm_helper nvme_core ttm xgene_hwmon\n    [  334.772217] CPU: 7 PID: 2214 Comm: ping Not tainted 6.0.0-rc4-00133-g64ae13ed4784 #4\n    [  334.779950] Hardware name: GIGABYTE R272-P31-00/MP32-AR1-00, BIOS F18v (SCP: 1.08.20211002) 12/01/2021\n    [  334.789244] pstate: 60400009 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n    [  334.796196] pc : bond_rr_gen_slave_id+0x40/0x124 [bonding]\n    [  334.801691] lr : bond_xmit_roundrobin_slave_get+0x38/0xdc [bonding]\n    [  334.807962] sp : ffff8000221733e0\n    [  334.811265] x29: ffff8000221733e0 x28: ffffdbac8572d198 x27: ffff80002217357c\n    [  334.818392] x26: 000000000000002a x25: ffffdbacb33ee000 x24: ffff07ff980fa000\n    [  334.825519] x23: ffffdbacb2e398ba x22: ffff07ff98102000 x21: ffff07ff981029c0\n    [  334.832646] x20: 0000000000000001 x19: ffff07ff981029c0 x18: 0000000000000014\n    [  334.839773] x17: 0000000000000000 x16: ffffdbacb1004364 x15: 0000aaaabe2f5a62\n    [  334.846899] x14: ffff07ff8e55d968 x13: ffff07ff8e55db30 x12: 0000000000000000\n    [  334.854026] x11: ffffdbacb21532e8 x10: 0000000000000001 x9 : ffffdbac857178ec\n    [  334.861153] x8 : ffff07ff9f6e5a28 x7 : 0000000000000000 x6 : 000000007c2b3742\n    [  334.868279] x5 : ffff2c91ac905000 x4 : ffff2c91ac905000 x3 : ffff07ff9f554400\n    [  334.875406] x2 : ffff2c91ac905000 x1 : 0000000000000001 x0 : ffff07ff981029c0\n    [  334.882532] Call trace:\n    [  334.884967]  bond_rr_gen_slave_id+0x40/0x124 [bonding]\n    [  334.890109]  bond_xmit_roundrobin_slave_get+0x38/0xdc [bonding]\n    [  334.896033]  __bond_start_xmit+0x128/0x3a0 [bonding]\n    [  334.901001]  bond_start_xmit+0x54/0xb0 [bonding]\n    [  334.905622]  dev_hard_start_xmit+0xb4/0x220\n    [  334.909798]  __dev_queue_xmit+0x1a0/0x720\n    [  334.913799]  arp_xmit+0x3c/0xbc\n    [  334.916932]  arp_send_dst+0x98/0xd0\n    [  334.920410]  arp_solicit+0xe8/0x230\n    [  334.923888]  neigh_probe+0x60/0xb0\n    [  334.927279]  __neigh_event_send+0x3b0/0x470\n    [  334.931453]  neigh_resolve_output+0x70/0x90\n    [  334.935626]  ip_finish_output2+0x158/0x514\n    [  334.939714]  __ip_finish_output+0xac/0x1a4\n    [  334.943800]  ip_finish_output+0x40/0xfc\n    [  334.947626]  ip_output+0xf8/0x1a4\n    [  334.950931]  ip_send_skb+0x5c/0x100\n    [  334.954410]  ip_push_pending_frames+0x3c/0x60\n    [  334.958758]  raw_sendmsg+0x458/0x6d0\n    [  334.962325]  inet_sendmsg+0x50/0x80\n    [  334.965805]  sock_sendmsg+0x60/0x6c\n    [  334.969286]  __sys_sendto+0xc8/0x134\n    [  334.972853]  __arm64_sys_sendto+0x34/0x4c\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:17.485Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ec3a6f4ffe556a28f6f5028bf7c4412557e7051b"
        },
        {
          "url": "https://git.kernel.org/stable/c/2c8e8ab53acfc78da0b4a65f30cb5d306e7d78f7"
        },
        {
          "url": "https://git.kernel.org/stable/c/0e400d602f46360752e4b32ce842dba3808e15e6"
        }
      ],
      "title": "bonding: fix NULL deref in bond_rr_gen_slave_id",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48640",
    "datePublished": "2024-04-28T12:59:48.510Z",
    "dateReserved": "2024-02-25T13:44:28.316Z",
    "dateUpdated": "2025-05-04T08:20:17.485Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26836 (GCVE-0-2024-26836)

Vulnerability from cvelistv5

Published

2024-04-17 10:10

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: platform/x86: think-lmi: Fix password opcode ordering for workstations The Lenovo workstations require the password opcode to be run before the attribute value is changed (if Admin password is enabled). Tested on some Thinkpads to confirm they are OK with this order too.

References

►

URL

Tags

	https://git.kernel.org/stable/c/2deb10a99671afda30f834e95e5b992a805bba6a
	https://git.kernel.org/stable/c/2bfbe1e0aed00ba51d58573c79452fada3f62ed4
	https://git.kernel.org/stable/c/6f7d0f5fd8e440c3446560100ac4ff9a55eec340

Impacted products

Vendor

Product

Version

►

Linux

Version: 640a5fa50a42b99bfa2a0ec51b4ea9591d9bd055
Version: 640a5fa50a42b99bfa2a0ec51b4ea9591d9bd055
Version: 640a5fa50a42b99bfa2a0ec51b4ea9591d9bd055

Linux

Version: 5.17

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26836",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:40:16.336902Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:05.605Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.702Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2bfbe1e0aed00ba51d58573c79452fada3f62ed4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6f7d0f5fd8e440c3446560100ac4ff9a55eec340"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/platform/x86/think-lmi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "2deb10a99671afda30f834e95e5b992a805bba6a",
              "status": "affected",
              "version": "640a5fa50a42b99bfa2a0ec51b4ea9591d9bd055",
              "versionType": "git"
            },
            {
              "lessThan": "2bfbe1e0aed00ba51d58573c79452fada3f62ed4",
              "status": "affected",
              "version": "640a5fa50a42b99bfa2a0ec51b4ea9591d9bd055",
              "versionType": "git"
            },
            {
              "lessThan": "6f7d0f5fd8e440c3446560100ac4ff9a55eec340",
              "status": "affected",
              "version": "640a5fa50a42b99bfa2a0ec51b4ea9591d9bd055",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/platform/x86/think-lmi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.17"
            },
            {
              "lessThan": "5.17",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.55",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.55",
                  "versionStartIncluding": "5.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "versionStartIncluding": "5.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.17",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: think-lmi: Fix password opcode ordering for workstations\n\nThe Lenovo workstations require the password opcode to be run before\nthe attribute value is changed (if Admin password is enabled).\n\nTested on some Thinkpads to confirm they are OK with this order too."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:37.100Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/2deb10a99671afda30f834e95e5b992a805bba6a"
        },
        {
          "url": "https://git.kernel.org/stable/c/2bfbe1e0aed00ba51d58573c79452fada3f62ed4"
        },
        {
          "url": "https://git.kernel.org/stable/c/6f7d0f5fd8e440c3446560100ac4ff9a55eec340"
        }
      ],
      "title": "platform/x86: think-lmi: Fix password opcode ordering for workstations",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26836",
    "datePublished": "2024-04-17T10:10:03.539Z",
    "dateReserved": "2024-02-19T14:20:24.181Z",
    "dateUpdated": "2025-05-04T08:57:37.100Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-23850 (GCVE-0-2024-23850)

Vulnerability from cvelistv5

Published

2024-01-23 00:00

Modified

2024-10-30 20:32

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

Summary

In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation.

References

►

URL

Tags

	https://lore.kernel.org/lkml/CALGdzuo6awWdau3X=8XK547x2vX_-VoFmH1aPsqosRTQ5WzJVA%40mail.gmail.com/
	https://lore.kernel.org/all/6a80cb4b32af89787dadee728310e5e2ca85343f.1705741883.git.wqu%40suse.com/
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZOU3745CWCDZ7EMKMXB2OEEIB5Q3IWM/	vendor-advisory
	https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html	mailing-list

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T23:13:08.142Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lore.kernel.org/lkml/CALGdzuo6awWdau3X=8XK547x2vX_-VoFmH1aPsqosRTQ5WzJVA%40mail.gmail.com/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lore.kernel.org/all/6a80cb4b32af89787dadee728310e5e2ca85343f.1705741883.git.wqu%40suse.com/"
          },
          {
            "name": "FEDORA-2024-d16d94b00d",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZOU3745CWCDZ7EMKMXB2OEEIB5Q3IWM/"
          },
          {
            "name": "[debian-lts-announce] 20240625 [SECURITY] [DLA 3842-1] linux-5.10 security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-23850",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-01T19:31:54.610927Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-617",
                "description": "CWE-617 Reachable Assertion",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T20:32:33.766Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-06-25T21:10:25.167902",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://lore.kernel.org/lkml/CALGdzuo6awWdau3X=8XK547x2vX_-VoFmH1aPsqosRTQ5WzJVA%40mail.gmail.com/"
        },
        {
          "url": "https://lore.kernel.org/all/6a80cb4b32af89787dadee728310e5e2ca85343f.1705741883.git.wqu%40suse.com/"
        },
        {
          "name": "FEDORA-2024-d16d94b00d",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZOU3745CWCDZ7EMKMXB2OEEIB5Q3IWM/"
        },
        {
          "name": "[debian-lts-announce] 20240625 [SECURITY] [DLA 3842-1] linux-5.10 security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2024-23850",
    "datePublished": "2024-01-23T00:00:00",
    "dateReserved": "2024-01-23T00:00:00",
    "dateUpdated": "2024-10-30T20:32:33.766Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27013 (GCVE-0-2024-27013)

Vulnerability from cvelistv5

Published

2024-05-01 05:29

Modified

2025-05-04 09:02

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: tun: limit printing rate when illegal packet received by tun dev vhost_worker will call tun call backs to receive packets. If too many illegal packets arrives, tun_do_read will keep dumping packet contents. When console is enabled, it will costs much more cpu time to dump packet and soft lockup will be detected. net_ratelimit mechanism can be used to limit the dumping rate. PID: 33036 TASK: ffff949da6f20000 CPU: 23 COMMAND: "vhost-32980" #0 [fffffe00003fce50] crash_nmi_callback at ffffffff89249253 #1 [fffffe00003fce58] nmi_handle at ffffffff89225fa3 #2 [fffffe00003fceb0] default_do_nmi at ffffffff8922642e #3 [fffffe00003fced0] do_nmi at ffffffff8922660d #4 [fffffe00003fcef0] end_repeat_nmi at ffffffff89c01663 [exception RIP: io_serial_in+20] RIP: ffffffff89792594 RSP: ffffa655314979e8 RFLAGS: 00000002 RAX: ffffffff89792500 RBX: ffffffff8af428a0 RCX: 0000000000000000 RDX: 00000000000003fd RSI: 0000000000000005 RDI: ffffffff8af428a0 RBP: 0000000000002710 R8: 0000000000000004 R9: 000000000000000f R10: 0000000000000000 R11: ffffffff8acbf64f R12: 0000000000000020 R13: ffffffff8acbf698 R14: 0000000000000058 R15: 0000000000000000 ORIG_RAX: ffffffffffffffff CS: 0010 SS: 0018 #5 [ffffa655314979e8] io_serial_in at ffffffff89792594 #6 [ffffa655314979e8] wait_for_xmitr at ffffffff89793470 #7 [ffffa65531497a08] serial8250_console_putchar at ffffffff897934f6 #8 [ffffa65531497a20] uart_console_write at ffffffff8978b605 #9 [ffffa65531497a48] serial8250_console_write at ffffffff89796558 #10 [ffffa65531497ac8] console_unlock at ffffffff89316124 #11 [ffffa65531497b10] vprintk_emit at ffffffff89317c07 #12 [ffffa65531497b68] printk at ffffffff89318306 #13 [ffffa65531497bc8] print_hex_dump at ffffffff89650765 #14 [ffffa65531497ca8] tun_do_read at ffffffffc0b06c27 [tun] #15 [ffffa65531497d38] tun_recvmsg at ffffffffc0b06e34 [tun] #16 [ffffa65531497d68] handle_rx at ffffffffc0c5d682 [vhost_net] #17 [ffffa65531497ed0] vhost_worker at ffffffffc0c644dc [vhost] #18 [ffffa65531497f10] kthread at ffffffff892d2e72 #19 [ffffa65531497f50] ret_from_fork at ffffffff89c0022f

References

►

URL

Tags

	https://git.kernel.org/stable/c/68459b8e3ee554ce71878af9eb69659b9462c588
	https://git.kernel.org/stable/c/4b0dcae5c4797bf31c63011ed62917210d3fdac3
	https://git.kernel.org/stable/c/14cdb43dbc827e18ac7d5b30c5b4c676219f1421
	https://git.kernel.org/stable/c/a50dbeca28acf7051dfa92786b85f704c75db6eb
	https://git.kernel.org/stable/c/62e27ef18eb4f0d33bbae8e9ef56b99696a74713
	https://git.kernel.org/stable/c/40f4ced305c6c47487d3cd8da54676e2acc1a6ad
	https://git.kernel.org/stable/c/52854101180beccdb9dc2077a3bea31b6ad48dfa
	https://git.kernel.org/stable/c/f8bbc07ac535593139c875ffa19af924b1084540

Impacted products

Vendor

Product

Version

►

Linux

Version: ef3db4a5954281bc1ea49a4739c88eaea091dc71
Version: ef3db4a5954281bc1ea49a4739c88eaea091dc71
Version: ef3db4a5954281bc1ea49a4739c88eaea091dc71
Version: ef3db4a5954281bc1ea49a4739c88eaea091dc71
Version: ef3db4a5954281bc1ea49a4739c88eaea091dc71
Version: ef3db4a5954281bc1ea49a4739c88eaea091dc71
Version: ef3db4a5954281bc1ea49a4739c88eaea091dc71
Version: ef3db4a5954281bc1ea49a4739c88eaea091dc71

Linux

Version: 2.6.35

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27013",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-01T13:35:26.133742Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:22:49.101Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.877Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/68459b8e3ee554ce71878af9eb69659b9462c588"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4b0dcae5c4797bf31c63011ed62917210d3fdac3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/14cdb43dbc827e18ac7d5b30c5b4c676219f1421"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a50dbeca28acf7051dfa92786b85f704c75db6eb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/62e27ef18eb4f0d33bbae8e9ef56b99696a74713"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/40f4ced305c6c47487d3cd8da54676e2acc1a6ad"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/52854101180beccdb9dc2077a3bea31b6ad48dfa"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f8bbc07ac535593139c875ffa19af924b1084540"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/tun.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "68459b8e3ee554ce71878af9eb69659b9462c588",
              "status": "affected",
              "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
              "versionType": "git"
            },
            {
              "lessThan": "4b0dcae5c4797bf31c63011ed62917210d3fdac3",
              "status": "affected",
              "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
              "versionType": "git"
            },
            {
              "lessThan": "14cdb43dbc827e18ac7d5b30c5b4c676219f1421",
              "status": "affected",
              "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
              "versionType": "git"
            },
            {
              "lessThan": "a50dbeca28acf7051dfa92786b85f704c75db6eb",
              "status": "affected",
              "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
              "versionType": "git"
            },
            {
              "lessThan": "62e27ef18eb4f0d33bbae8e9ef56b99696a74713",
              "status": "affected",
              "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
              "versionType": "git"
            },
            {
              "lessThan": "40f4ced305c6c47487d3cd8da54676e2acc1a6ad",
              "status": "affected",
              "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
              "versionType": "git"
            },
            {
              "lessThan": "52854101180beccdb9dc2077a3bea31b6ad48dfa",
              "status": "affected",
              "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
              "versionType": "git"
            },
            {
              "lessThan": "f8bbc07ac535593139c875ffa19af924b1084540",
              "status": "affected",
              "version": "ef3db4a5954281bc1ea49a4739c88eaea091dc71",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/tun.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.35"
            },
            {
              "lessThan": "2.6.35",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.313",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.275",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.216",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.157",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.88",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.29",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.8",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.313",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.275",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.216",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.157",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.88",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.29",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.8",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.35",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ntun: limit printing rate when illegal packet received by tun dev\n\nvhost_worker will call tun call backs to receive packets. If too many\nillegal packets arrives, tun_do_read will keep dumping packet contents.\nWhen console is enabled, it will costs much more cpu time to dump\npacket and soft lockup will be detected.\n\nnet_ratelimit mechanism can be used to limit the dumping rate.\n\nPID: 33036    TASK: ffff949da6f20000  CPU: 23   COMMAND: \"vhost-32980\"\n #0 [fffffe00003fce50] crash_nmi_callback at ffffffff89249253\n #1 [fffffe00003fce58] nmi_handle at ffffffff89225fa3\n #2 [fffffe00003fceb0] default_do_nmi at ffffffff8922642e\n #3 [fffffe00003fced0] do_nmi at ffffffff8922660d\n #4 [fffffe00003fcef0] end_repeat_nmi at ffffffff89c01663\n    [exception RIP: io_serial_in+20]\n    RIP: ffffffff89792594  RSP: ffffa655314979e8  RFLAGS: 00000002\n    RAX: ffffffff89792500  RBX: ffffffff8af428a0  RCX: 0000000000000000\n    RDX: 00000000000003fd  RSI: 0000000000000005  RDI: ffffffff8af428a0\n    RBP: 0000000000002710   R8: 0000000000000004   R9: 000000000000000f\n    R10: 0000000000000000  R11: ffffffff8acbf64f  R12: 0000000000000020\n    R13: ffffffff8acbf698  R14: 0000000000000058  R15: 0000000000000000\n    ORIG_RAX: ffffffffffffffff  CS: 0010  SS: 0018\n #5 [ffffa655314979e8] io_serial_in at ffffffff89792594\n #6 [ffffa655314979e8] wait_for_xmitr at ffffffff89793470\n #7 [ffffa65531497a08] serial8250_console_putchar at ffffffff897934f6\n #8 [ffffa65531497a20] uart_console_write at ffffffff8978b605\n #9 [ffffa65531497a48] serial8250_console_write at ffffffff89796558\n #10 [ffffa65531497ac8] console_unlock at ffffffff89316124\n #11 [ffffa65531497b10] vprintk_emit at ffffffff89317c07\n #12 [ffffa65531497b68] printk at ffffffff89318306\n #13 [ffffa65531497bc8] print_hex_dump at ffffffff89650765\n #14 [ffffa65531497ca8] tun_do_read at ffffffffc0b06c27 [tun]\n #15 [ffffa65531497d38] tun_recvmsg at ffffffffc0b06e34 [tun]\n #16 [ffffa65531497d68] handle_rx at ffffffffc0c5d682 [vhost_net]\n #17 [ffffa65531497ed0] vhost_worker at ffffffffc0c644dc [vhost]\n #18 [ffffa65531497f10] kthread at ffffffff892d2e72\n #19 [ffffa65531497f50] ret_from_fork at ffffffff89c0022f"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:02:10.668Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/68459b8e3ee554ce71878af9eb69659b9462c588"
        },
        {
          "url": "https://git.kernel.org/stable/c/4b0dcae5c4797bf31c63011ed62917210d3fdac3"
        },
        {
          "url": "https://git.kernel.org/stable/c/14cdb43dbc827e18ac7d5b30c5b4c676219f1421"
        },
        {
          "url": "https://git.kernel.org/stable/c/a50dbeca28acf7051dfa92786b85f704c75db6eb"
        },
        {
          "url": "https://git.kernel.org/stable/c/62e27ef18eb4f0d33bbae8e9ef56b99696a74713"
        },
        {
          "url": "https://git.kernel.org/stable/c/40f4ced305c6c47487d3cd8da54676e2acc1a6ad"
        },
        {
          "url": "https://git.kernel.org/stable/c/52854101180beccdb9dc2077a3bea31b6ad48dfa"
        },
        {
          "url": "https://git.kernel.org/stable/c/f8bbc07ac535593139c875ffa19af924b1084540"
        }
      ],
      "title": "tun: limit printing rate when illegal packet received by tun dev",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27013",
    "datePublished": "2024-05-01T05:29:42.289Z",
    "dateReserved": "2024-02-19T14:20:24.209Z",
    "dateUpdated": "2025-05-04T09:02:10.668Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-0841 (GCVE-0-2024-0841)

Vulnerability from cvelistv5

Published

2024-01-28 11:20

Modified

2025-07-23 18:44

Severity ?

6.6 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CWE

CWE-476 - NULL Pointer Dereference

Summary

A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.

References

►

URL

Tags

	https://access.redhat.com/errata/RHSA-2024:2394	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:2950	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/errata/RHSA-2024:3138	vendor-advisory, x_refsource_REDHAT
	https://access.redhat.com/security/cve/CVE-2024-0841	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2256490	issue-tracking, x_refsource_REDHAT

Impacted products

Vendor

Product

Version

►

Red Hat

Red Hat Enterprise Linux 8

Unaffected: 0:4.18.0-553.rt7.342.el8_10   < *
    cpe:/a:redhat:enterprise_linux:8::nfv
    cpe:/a:redhat:enterprise_linux:8::realtime

Red Hat	Red Hat Enterprise Linux 8	Unaffected: 0:4.18.0-553.el8_10 < * cpe:/a:redhat:enterprise_linux:8::crb cpe:/o:redhat:enterprise_linux:8::baseos
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:5.14.0-427.13.1.el9_4 < * cpe:/o:redhat:enterprise_linux:9::baseos cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::realtime cpe:/a:redhat:enterprise_linux:9::nfv cpe:/a:redhat:enterprise_linux:9::crb
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 0:5.14.0-427.13.1.el9_4 < * cpe:/o:redhat:enterprise_linux:9::baseos cpe:/a:redhat:enterprise_linux:9::appstream cpe:/a:redhat:enterprise_linux:9::realtime cpe:/a:redhat:enterprise_linux:9::nfv cpe:/a:redhat:enterprise_linux:9::crb
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T18:18:18.949Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2024:2394",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:2394"
          },
          {
            "name": "RHSA-2024:2950",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:2950"
          },
          {
            "name": "RHSA-2024:3138",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:3138"
          },
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2024-0841"
          },
          {
            "name": "RHBZ#2256490",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256490"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-0841",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-08T15:50:50.798864Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-29T15:11:12.724Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::nfv",
            "cpe:/a:redhat:enterprise_linux:8::realtime"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:4.18.0-553.rt7.342.el8_10",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::crb",
            "cpe:/o:redhat:enterprise_linux:8::baseos"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:4.18.0-553.el8_10",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9::baseos",
            "cpe:/a:redhat:enterprise_linux:9::appstream",
            "cpe:/a:redhat:enterprise_linux:9::realtime",
            "cpe:/a:redhat:enterprise_linux:9::nfv",
            "cpe:/a:redhat:enterprise_linux:9::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:5.14.0-427.13.1.el9_4",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9::baseos",
            "cpe:/a:redhat:enterprise_linux:9::appstream",
            "cpe:/a:redhat:enterprise_linux:9::realtime",
            "cpe:/a:redhat:enterprise_linux:9::nfv",
            "cpe:/a:redhat:enterprise_linux:9::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "0:5.14.0-427.13.1.el9_4",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "affected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2024-01-23T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-476",
              "description": "NULL Pointer Dereference",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-07-23T18:44:52.678Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2024:2394",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:2394"
        },
        {
          "name": "RHSA-2024:2950",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:2950"
        },
        {
          "name": "RHSA-2024:3138",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:3138"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2024-0841"
        },
        {
          "name": "RHBZ#2256490",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256490"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2024-01-02T00:00:00+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2024-01-23T00:00:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "Kernel: hugetlbfs: null pointer dereference in hugetlbfs_fill_super function",
      "workarounds": [
        {
          "lang": "en",
          "value": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
        }
      ],
      "x_redhatCweChain": "CWE-476: NULL Pointer Dereference"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2024-0841",
    "datePublished": "2024-01-28T11:20:40.159Z",
    "dateReserved": "2024-01-23T21:14:44.230Z",
    "dateUpdated": "2025-07-23T18:44:52.678Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47217 (GCVE-0-2021-47217)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails Check for a valid hv_vp_index array prior to derefencing hv_vp_index when setting Hyper-V's TSC change callback. If Hyper-V setup failed in hyperv_init(), the kernel will still report that it's running under Hyper-V, but will have silently disabled nearly all functionality. BUG: kernel NULL pointer dereference, address: 0000000000000010 #PF: supervisor read access in kernel mode #PF: error_code(0x0000) - not-present page PGD 0 P4D 0 Oops: 0000 [#1] SMP CPU: 4 PID: 1 Comm: swapper/0 Not tainted 5.15.0-rc2+ #75 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015 RIP: 0010:set_hv_tscchange_cb+0x15/0xa0 Code: <8b> 04 82 8b 15 12 17 85 01 48 c1 e0 20 48 0d ee 00 01 00 f6 c6 08 ... Call Trace: kvm_arch_init+0x17c/0x280 kvm_init+0x31/0x330 vmx_init+0xba/0x13a do_one_initcall+0x41/0x1c0 kernel_init_freeable+0x1f2/0x23b kernel_init+0x16/0x120 ret_from_fork+0x22/0x30

References

►

URL

Tags

	https://git.kernel.org/stable/c/b20ec58f8a6f4fef32cc71480ddf824584e24743
	https://git.kernel.org/stable/c/b0e44dfb4e4c699cca33ede431b8d127e6e8d661
	https://git.kernel.org/stable/c/9c177eee116cf888276d3748cb176e72562cfd5c
	https://git.kernel.org/stable/c/8823ea27fff6084bbb4bc71d15378fae0220b1d8
	https://git.kernel.org/stable/c/daf972118c517b91f74ff1731417feb4270625a4

Impacted products

Vendor

Product

Version

►

Linux

Version: 93286261de1b46339aa27cd4c639b21778f6cade
Version: 93286261de1b46339aa27cd4c639b21778f6cade
Version: 93286261de1b46339aa27cd4c639b21778f6cade
Version: 93286261de1b46339aa27cd4c639b21778f6cade
Version: 93286261de1b46339aa27cd4c639b21778f6cade

Linux

Version: 4.16

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47217",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T18:03:45.646426Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T18:04:39.738Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.432Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b20ec58f8a6f4fef32cc71480ddf824584e24743"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b0e44dfb4e4c699cca33ede431b8d127e6e8d661"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9c177eee116cf888276d3748cb176e72562cfd5c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8823ea27fff6084bbb4bc71d15378fae0220b1d8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/daf972118c517b91f74ff1731417feb4270625a4"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "arch/x86/hyperv/hv_init.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b20ec58f8a6f4fef32cc71480ddf824584e24743",
              "status": "affected",
              "version": "93286261de1b46339aa27cd4c639b21778f6cade",
              "versionType": "git"
            },
            {
              "lessThan": "b0e44dfb4e4c699cca33ede431b8d127e6e8d661",
              "status": "affected",
              "version": "93286261de1b46339aa27cd4c639b21778f6cade",
              "versionType": "git"
            },
            {
              "lessThan": "9c177eee116cf888276d3748cb176e72562cfd5c",
              "status": "affected",
              "version": "93286261de1b46339aa27cd4c639b21778f6cade",
              "versionType": "git"
            },
            {
              "lessThan": "8823ea27fff6084bbb4bc71d15378fae0220b1d8",
              "status": "affected",
              "version": "93286261de1b46339aa27cd4c639b21778f6cade",
              "versionType": "git"
            },
            {
              "lessThan": "daf972118c517b91f74ff1731417feb4270625a4",
              "status": "affected",
              "version": "93286261de1b46339aa27cd4c639b21778f6cade",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "arch/x86/hyperv/hv_init.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.16"
            },
            {
              "lessThan": "4.16",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nx86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails\n\nCheck for a valid hv_vp_index array prior to derefencing hv_vp_index when\nsetting Hyper-V\u0027s TSC change callback.  If Hyper-V setup failed in\nhyperv_init(), the kernel will still report that it\u0027s running under\nHyper-V, but will have silently disabled nearly all functionality.\n\n  BUG: kernel NULL pointer dereference, address: 0000000000000010\n  #PF: supervisor read access in kernel mode\n  #PF: error_code(0x0000) - not-present page\n  PGD 0 P4D 0\n  Oops: 0000 [#1] SMP\n  CPU: 4 PID: 1 Comm: swapper/0 Not tainted 5.15.0-rc2+ #75\n  Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 0.0.0 02/06/2015\n  RIP: 0010:set_hv_tscchange_cb+0x15/0xa0\n  Code: \u003c8b\u003e 04 82 8b 15 12 17 85 01 48 c1 e0 20 48 0d ee 00 01 00 f6 c6 08\n  ...\n  Call Trace:\n   kvm_arch_init+0x17c/0x280\n   kvm_init+0x31/0x330\n   vmx_init+0xba/0x13a\n   do_one_initcall+0x41/0x1c0\n   kernel_init_freeable+0x1f2/0x23b\n   kernel_init+0x16/0x120\n   ret_from_fork+0x22/0x30"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:32.868Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b20ec58f8a6f4fef32cc71480ddf824584e24743"
        },
        {
          "url": "https://git.kernel.org/stable/c/b0e44dfb4e4c699cca33ede431b8d127e6e8d661"
        },
        {
          "url": "https://git.kernel.org/stable/c/9c177eee116cf888276d3748cb176e72562cfd5c"
        },
        {
          "url": "https://git.kernel.org/stable/c/8823ea27fff6084bbb4bc71d15378fae0220b1d8"
        },
        {
          "url": "https://git.kernel.org/stable/c/daf972118c517b91f74ff1731417feb4270625a4"
        }
      ],
      "title": "x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47217",
    "datePublished": "2024-04-10T19:01:56.419Z",
    "dateReserved": "2024-04-10T18:59:19.528Z",
    "dateUpdated": "2025-05-04T07:06:32.868Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47195 (GCVE-0-2021-47195)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 12:41

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free of the add_lock mutex Commit 6098475d4cb4 ("spi: Fix deadlock when adding SPI controllers on SPI buses") introduced a per-controller mutex. But mutex_unlock() of said lock is called after the controller is already freed: spi_unregister_controller(ctlr) -> put_device(&ctlr->dev) -> spi_controller_release(dev) -> mutex_unlock(&ctrl->add_lock) Move the put_device() after the mutex_unlock().

References

►

URL

Tags

	https://git.kernel.org/stable/c/54c2c96eafcfd242e52e932ab54ace4784efe1dd
	https://git.kernel.org/stable/c/11eab327a2a8bd36c38afbff920ae1bd45588dd4
	https://git.kernel.org/stable/c/37330f37f6666c7739a44b2b6b95b047ccdbed2d
	https://git.kernel.org/stable/c/6c53b45c71b4920b5e62f0ea8079a1da382b9434

Impacted products

Vendor

Product

Version

►

Linux

Version: aa3f3d7bef59583f2d3234173105a27ff61ef8fe
Version: c8dce228db6f81dbc897a018dfc5c418e917cf64
Version: 6098475d4cb48d821bdf453c61118c56e26294f0
Version: 6098475d4cb48d821bdf453c61118c56e26294f0
Version: 722ef19a161ce3fffb3d1b01ce2301c306639bdd

Linux

Version: 5.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47195",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-10T19:52:25.727067Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:13:36.222Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.110Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/37330f37f6666c7739a44b2b6b95b047ccdbed2d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6c53b45c71b4920b5e62f0ea8079a1da382b9434"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/spi/spi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "54c2c96eafcfd242e52e932ab54ace4784efe1dd",
              "status": "affected",
              "version": "aa3f3d7bef59583f2d3234173105a27ff61ef8fe",
              "versionType": "git"
            },
            {
              "lessThan": "11eab327a2a8bd36c38afbff920ae1bd45588dd4",
              "status": "affected",
              "version": "c8dce228db6f81dbc897a018dfc5c418e917cf64",
              "versionType": "git"
            },
            {
              "lessThan": "37330f37f6666c7739a44b2b6b95b047ccdbed2d",
              "status": "affected",
              "version": "6098475d4cb48d821bdf453c61118c56e26294f0",
              "versionType": "git"
            },
            {
              "lessThan": "6c53b45c71b4920b5e62f0ea8079a1da382b9434",
              "status": "affected",
              "version": "6098475d4cb48d821bdf453c61118c56e26294f0",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "722ef19a161ce3fffb3d1b01ce2301c306639bdd",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/spi/spi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.15"
            },
            {
              "lessThan": "5.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.14.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: fix use-after-free of the add_lock mutex\n\nCommit 6098475d4cb4 (\"spi: Fix deadlock when adding SPI controllers on\nSPI buses\") introduced a per-controller mutex. But mutex_unlock() of\nsaid lock is called after the controller is already freed:\n\n  spi_unregister_controller(ctlr)\n  -\u003e put_device(\u0026ctlr-\u003edev)\n    -\u003e spi_controller_release(dev)\n  -\u003e mutex_unlock(\u0026ctrl-\u003eadd_lock)\n\nMove the put_device() after the mutex_unlock()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:41:14.008Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/54c2c96eafcfd242e52e932ab54ace4784efe1dd"
        },
        {
          "url": "https://git.kernel.org/stable/c/11eab327a2a8bd36c38afbff920ae1bd45588dd4"
        },
        {
          "url": "https://git.kernel.org/stable/c/37330f37f6666c7739a44b2b6b95b047ccdbed2d"
        },
        {
          "url": "https://git.kernel.org/stable/c/6c53b45c71b4920b5e62f0ea8079a1da382b9434"
        }
      ],
      "title": "spi: fix use-after-free of the add_lock mutex",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47195",
    "datePublished": "2024-04-10T18:56:31.999Z",
    "dateReserved": "2024-03-25T09:12:14.114Z",
    "dateUpdated": "2025-05-04T12:41:14.008Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-23848 (GCVE-0-2024-23848)

Vulnerability from cvelistv5

Published

2024-01-23 00:00

Modified

2025-05-30 14:21

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

Summary

In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.

References

►

URL

Tags

https://lore.kernel.org/lkml/e9f42704-2f99-4f2c-ade5-f952e5fd53e5%40xs4all.nl/

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T23:13:08.486Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lore.kernel.org/lkml/e9f42704-2f99-4f2c-ade5-f952e5fd53e5%40xs4all.nl/"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-23848",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-05-08T17:35:39.571213Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-05-30T14:21:34.120Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-01-23T08:46:52.406Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://lore.kernel.org/lkml/e9f42704-2f99-4f2c-ade5-f952e5fd53e5%40xs4all.nl/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2024-23848",
    "datePublished": "2024-01-23T00:00:00.000Z",
    "dateReserved": "2024-01-23T00:00:00.000Z",
    "dateUpdated": "2025-05-30T14:21:34.120Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47187 (GCVE-0-2021-47187)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:05

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency The entry/exit latency and minimum residency in state for the idle states of MSM8998 were ..bad: first of all, for all of them the timings were written for CPU sleep but the min-residency-us param was miscalculated (supposedly, while porting this from downstream); Then, the power collapse states are setting PC on both the CPU cluster *and* the L2 cache, which have different timings: in the specific case of L2 the times are higher so these ones should be taken into account instead of the CPU ones. This parameter misconfiguration was not giving particular issues because on MSM8998 there was no CPU scaling at all, so cluster/L2 power collapse was rarely (if ever) hit. When CPU scaling is enabled, though, the wrong timings will produce SoC unstability shown to the user as random, apparently error-less, sudden reboots and/or lockups. This set of parameters are stabilizing the SoC when CPU scaling is ON and when power collapse is frequently hit.

References

►

URL

Tags

	https://git.kernel.org/stable/c/a14d7038ea201c5526375becfc43b9ba281b1e82
	https://git.kernel.org/stable/c/e52fecdd0c142b95c720683885b06ee3f0e065c8
	https://git.kernel.org/stable/c/118c826ef8b43efe0fda8faf419673707ee8c5e5
	https://git.kernel.org/stable/c/3f1dcaff642e75c1d2ad03f783fa8a3b1f56dd50

Impacted products

Vendor

Product

Version

►

Linux

Version: c3083c80b52c4e29b65ed838d2e66a91b13a3152
Version: c3083c80b52c4e29b65ed838d2e66a91b13a3152
Version: c3083c80b52c4e29b65ed838d2e66a91b13a3152
Version: c3083c80b52c4e29b65ed838d2e66a91b13a3152

Linux

Version: 5.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.117Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a14d7038ea201c5526375becfc43b9ba281b1e82"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e52fecdd0c142b95c720683885b06ee3f0e065c8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/118c826ef8b43efe0fda8faf419673707ee8c5e5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3f1dcaff642e75c1d2ad03f783fa8a3b1f56dd50"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47187",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:50:14.416213Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:40.154Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "arch/arm64/boot/dts/qcom/msm8998.dtsi"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a14d7038ea201c5526375becfc43b9ba281b1e82",
              "status": "affected",
              "version": "c3083c80b52c4e29b65ed838d2e66a91b13a3152",
              "versionType": "git"
            },
            {
              "lessThan": "e52fecdd0c142b95c720683885b06ee3f0e065c8",
              "status": "affected",
              "version": "c3083c80b52c4e29b65ed838d2e66a91b13a3152",
              "versionType": "git"
            },
            {
              "lessThan": "118c826ef8b43efe0fda8faf419673707ee8c5e5",
              "status": "affected",
              "version": "c3083c80b52c4e29b65ed838d2e66a91b13a3152",
              "versionType": "git"
            },
            {
              "lessThan": "3f1dcaff642e75c1d2ad03f783fa8a3b1f56dd50",
              "status": "affected",
              "version": "c3083c80b52c4e29b65ed838d2e66a91b13a3152",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "arch/arm64/boot/dts/qcom/msm8998.dtsi"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.3"
            },
            {
              "lessThan": "5.3",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\narm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency\n\nThe entry/exit latency and minimum residency in state for the idle\nstates of MSM8998 were ..bad: first of all, for all of them the\ntimings were written for CPU sleep but the min-residency-us param\nwas miscalculated (supposedly, while porting this from downstream);\nThen, the power collapse states are setting PC on both the CPU\ncluster *and* the L2 cache, which have different timings: in the\nspecific case of L2 the times are higher so these ones should be\ntaken into account instead of the CPU ones.\n\nThis parameter misconfiguration was not giving particular issues\nbecause on MSM8998 there was no CPU scaling at all, so cluster/L2\npower collapse was rarely (if ever) hit.\nWhen CPU scaling is enabled, though, the wrong timings will produce\nSoC unstability shown to the user as random, apparently error-less,\nsudden reboots and/or lockups.\n\nThis set of parameters are stabilizing the SoC when CPU scaling is\nON and when power collapse is frequently hit."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:05:58.765Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a14d7038ea201c5526375becfc43b9ba281b1e82"
        },
        {
          "url": "https://git.kernel.org/stable/c/e52fecdd0c142b95c720683885b06ee3f0e065c8"
        },
        {
          "url": "https://git.kernel.org/stable/c/118c826ef8b43efe0fda8faf419673707ee8c5e5"
        },
        {
          "url": "https://git.kernel.org/stable/c/3f1dcaff642e75c1d2ad03f783fa8a3b1f56dd50"
        }
      ],
      "title": "arm64: dts: qcom: msm8998: Fix CPU/L2 idle state latency and residency",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47187",
    "datePublished": "2024-04-10T18:56:26.926Z",
    "dateReserved": "2024-03-25T09:12:14.113Z",
    "dateUpdated": "2025-05-04T07:05:58.765Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26896 (GCVE-0-2024-26896)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:59

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: wifi: wfx: fix memory leak when starting AP Kmemleak reported this error: unreferenced object 0xd73d1180 (size 184): comm "wpa_supplicant", pid 1559, jiffies 13006305 (age 964.245s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 1e 00 01 00 00 00 00 00 ................ backtrace: [<5ca11420>] kmem_cache_alloc+0x20c/0x5ac [<127bdd74>] __alloc_skb+0x144/0x170 [<fb8a5e38>] __netdev_alloc_skb+0x50/0x180 [<0f9fa1d5>] __ieee80211_beacon_get+0x290/0x4d4 [mac80211] [<7accd02d>] ieee80211_beacon_get_tim+0x54/0x18c [mac80211] [<41e25cc3>] wfx_start_ap+0xc8/0x234 [wfx] [<93a70356>] ieee80211_start_ap+0x404/0x6b4 [mac80211] [<a4a661cd>] nl80211_start_ap+0x76c/0x9e0 [cfg80211] [<47bd8b68>] genl_rcv_msg+0x198/0x378 [<453ef796>] netlink_rcv_skb+0xd0/0x130 [<6b7c977a>] genl_rcv+0x34/0x44 [<66b2d04d>] netlink_unicast+0x1b4/0x258 [<f965b9b6>] netlink_sendmsg+0x1e8/0x428 [<aadb8231>] ____sys_sendmsg+0x1e0/0x274 [<d2b5212d>] ___sys_sendmsg+0x80/0xb4 [<69954f45>] __sys_sendmsg+0x64/0xa8 unreferenced object 0xce087000 (size 1024): comm "wpa_supplicant", pid 1559, jiffies 13006305 (age 964.246s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00 ...@............ backtrace: [<9a993714>] __kmalloc_track_caller+0x230/0x600 [<f83ea192>] kmalloc_reserve.constprop.0+0x30/0x74 [<a2c61343>] __alloc_skb+0xa0/0x170 [<fb8a5e38>] __netdev_alloc_skb+0x50/0x180 [<0f9fa1d5>] __ieee80211_beacon_get+0x290/0x4d4 [mac80211] [<7accd02d>] ieee80211_beacon_get_tim+0x54/0x18c [mac80211] [<41e25cc3>] wfx_start_ap+0xc8/0x234 [wfx] [<93a70356>] ieee80211_start_ap+0x404/0x6b4 [mac80211] [<a4a661cd>] nl80211_start_ap+0x76c/0x9e0 [cfg80211] [<47bd8b68>] genl_rcv_msg+0x198/0x378 [<453ef796>] netlink_rcv_skb+0xd0/0x130 [<6b7c977a>] genl_rcv+0x34/0x44 [<66b2d04d>] netlink_unicast+0x1b4/0x258 [<f965b9b6>] netlink_sendmsg+0x1e8/0x428 [<aadb8231>] ____sys_sendmsg+0x1e0/0x274 [<d2b5212d>] ___sys_sendmsg+0x80/0xb4 However, since the kernel is build optimized, it seems the stack is not accurate. It appears the issue is related to wfx_set_mfp_ap(). The issue is obvious in this function: memory allocated by ieee80211_beacon_get() is never released. Fixing this leak makes kmemleak happy.

References

►

URL

Tags

	https://git.kernel.org/stable/c/a1f57a0127b89a6b6620514564aa7eaec16d9af3
	https://git.kernel.org/stable/c/3a71ec74e5e3478d202a1874f085ca3ef40be49b
	https://git.kernel.org/stable/c/12f00a367b2b62756e0396f14b54c2c15524e1c3
	https://git.kernel.org/stable/c/dadbb5d29d6c5f571a50272fce8c1505a9559487
	https://git.kernel.org/stable/c/b8cfb7c819dd39965136a66fe3a7fde688d976fc

Impacted products

Vendor

Product

Version

►

Linux

Version: 5.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:5.10:-:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "5.10"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "a1f57a0127b8",
                "status": "affected",
                "version": "268bceec1684",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26896",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-13T16:49:12.892582Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:48:38.723Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.675Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a1f57a0127b89a6b6620514564aa7eaec16d9af3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3a71ec74e5e3478d202a1874f085ca3ef40be49b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/12f00a367b2b62756e0396f14b54c2c15524e1c3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dadbb5d29d6c5f571a50272fce8c1505a9559487"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b8cfb7c819dd39965136a66fe3a7fde688d976fc"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/silabs/wfx/sta.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a1f57a0127b89a6b6620514564aa7eaec16d9af3",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            },
            {
              "lessThan": "3a71ec74e5e3478d202a1874f085ca3ef40be49b",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            },
            {
              "lessThan": "12f00a367b2b62756e0396f14b54c2c15524e1c3",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            },
            {
              "lessThan": "dadbb5d29d6c5f571a50272fce8c1505a9559487",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            },
            {
              "lessThan": "b8cfb7c819dd39965136a66fe3a7fde688d976fc",
              "status": "affected",
              "version": "268bceec1684932e194ae87877dcc73f534d921c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/silabs/wfx/sta.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wfx: fix memory leak when starting AP\n\nKmemleak reported this error:\n\n    unreferenced object 0xd73d1180 (size 184):\n      comm \"wpa_supplicant\", pid 1559, jiffies 13006305 (age 964.245s)\n      hex dump (first 32 bytes):\n        00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n        00 00 00 00 00 00 00 00 1e 00 01 00 00 00 00 00  ................\n      backtrace:\n        [\u003c5ca11420\u003e] kmem_cache_alloc+0x20c/0x5ac\n        [\u003c127bdd74\u003e] __alloc_skb+0x144/0x170\n        [\u003cfb8a5e38\u003e] __netdev_alloc_skb+0x50/0x180\n        [\u003c0f9fa1d5\u003e] __ieee80211_beacon_get+0x290/0x4d4 [mac80211]\n        [\u003c7accd02d\u003e] ieee80211_beacon_get_tim+0x54/0x18c [mac80211]\n        [\u003c41e25cc3\u003e] wfx_start_ap+0xc8/0x234 [wfx]\n        [\u003c93a70356\u003e] ieee80211_start_ap+0x404/0x6b4 [mac80211]\n        [\u003ca4a661cd\u003e] nl80211_start_ap+0x76c/0x9e0 [cfg80211]\n        [\u003c47bd8b68\u003e] genl_rcv_msg+0x198/0x378\n        [\u003c453ef796\u003e] netlink_rcv_skb+0xd0/0x130\n        [\u003c6b7c977a\u003e] genl_rcv+0x34/0x44\n        [\u003c66b2d04d\u003e] netlink_unicast+0x1b4/0x258\n        [\u003cf965b9b6\u003e] netlink_sendmsg+0x1e8/0x428\n        [\u003caadb8231\u003e] ____sys_sendmsg+0x1e0/0x274\n        [\u003cd2b5212d\u003e] ___sys_sendmsg+0x80/0xb4\n        [\u003c69954f45\u003e] __sys_sendmsg+0x64/0xa8\n    unreferenced object 0xce087000 (size 1024):\n      comm \"wpa_supplicant\", pid 1559, jiffies 13006305 (age 964.246s)\n      hex dump (first 32 bytes):\n        00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n        10 00 07 40 00 00 00 00 00 00 00 00 00 00 00 00  ...@............\n      backtrace:\n        [\u003c9a993714\u003e] __kmalloc_track_caller+0x230/0x600\n        [\u003cf83ea192\u003e] kmalloc_reserve.constprop.0+0x30/0x74\n        [\u003ca2c61343\u003e] __alloc_skb+0xa0/0x170\n        [\u003cfb8a5e38\u003e] __netdev_alloc_skb+0x50/0x180\n        [\u003c0f9fa1d5\u003e] __ieee80211_beacon_get+0x290/0x4d4 [mac80211]\n        [\u003c7accd02d\u003e] ieee80211_beacon_get_tim+0x54/0x18c [mac80211]\n        [\u003c41e25cc3\u003e] wfx_start_ap+0xc8/0x234 [wfx]\n        [\u003c93a70356\u003e] ieee80211_start_ap+0x404/0x6b4 [mac80211]\n        [\u003ca4a661cd\u003e] nl80211_start_ap+0x76c/0x9e0 [cfg80211]\n        [\u003c47bd8b68\u003e] genl_rcv_msg+0x198/0x378\n        [\u003c453ef796\u003e] netlink_rcv_skb+0xd0/0x130\n        [\u003c6b7c977a\u003e] genl_rcv+0x34/0x44\n        [\u003c66b2d04d\u003e] netlink_unicast+0x1b4/0x258\n        [\u003cf965b9b6\u003e] netlink_sendmsg+0x1e8/0x428\n        [\u003caadb8231\u003e] ____sys_sendmsg+0x1e0/0x274\n        [\u003cd2b5212d\u003e] ___sys_sendmsg+0x80/0xb4\n\nHowever, since the kernel is build optimized, it seems the stack is not\naccurate. It appears the issue is related to wfx_set_mfp_ap(). The issue\nis obvious in this function: memory allocated by ieee80211_beacon_get()\nis never released. Fixing this leak makes kmemleak happy."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:59:07.701Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a1f57a0127b89a6b6620514564aa7eaec16d9af3"
        },
        {
          "url": "https://git.kernel.org/stable/c/3a71ec74e5e3478d202a1874f085ca3ef40be49b"
        },
        {
          "url": "https://git.kernel.org/stable/c/12f00a367b2b62756e0396f14b54c2c15524e1c3"
        },
        {
          "url": "https://git.kernel.org/stable/c/dadbb5d29d6c5f571a50272fce8c1505a9559487"
        },
        {
          "url": "https://git.kernel.org/stable/c/b8cfb7c819dd39965136a66fe3a7fde688d976fc"
        }
      ],
      "title": "wifi: wfx: fix memory leak when starting AP",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26896",
    "datePublished": "2024-04-17T10:27:47.214Z",
    "dateReserved": "2024-02-19T14:20:24.186Z",
    "dateUpdated": "2025-05-04T08:59:07.701Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47199 (GCVE-0-2021-47199)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: CT, Fix multiple allocations and memleak of mod acts CT clear action offload adds additional mod hdr actions to the flow's original mod actions in order to clear the registers which hold ct_state. When such flow also includes encap action, a neigh update event can cause the driver to unoffload the flow and then reoffload it. Each time this happens, the ct clear handling adds that same set of mod hdr actions to reset ct_state until the max of mod hdr actions is reached. Also the driver never releases the allocated mod hdr actions and causing a memleak. Fix above two issues by moving CT clear mod acts allocation into the parsing actions phase and only use it when offloading the rule. The release of mod acts will be done in the normal flow_put(). backtrace: [<000000007316e2f3>] krealloc+0x83/0xd0 [<00000000ef157de1>] mlx5e_mod_hdr_alloc+0x147/0x300 [mlx5_core] [<00000000970ce4ae>] mlx5e_tc_match_to_reg_set_and_get_id+0xd7/0x240 [mlx5_core] [<0000000067c5fa17>] mlx5e_tc_match_to_reg_set+0xa/0x20 [mlx5_core] [<00000000d032eb98>] mlx5_tc_ct_entry_set_registers.isra.0+0x36/0xc0 [mlx5_core] [<00000000fd23b869>] mlx5_tc_ct_flow_offload+0x272/0x1f10 [mlx5_core] [<000000004fc24acc>] mlx5e_tc_offload_fdb_rules.part.0+0x150/0x620 [mlx5_core] [<00000000dc741c17>] mlx5e_tc_encap_flows_add+0x489/0x690 [mlx5_core] [<00000000e92e49d7>] mlx5e_rep_update_flows+0x6e4/0x9b0 [mlx5_core] [<00000000f60f5602>] mlx5e_rep_neigh_update+0x39a/0x5d0 [mlx5_core]

References

►

URL

Tags

	https://git.kernel.org/stable/c/486e8de6e233ff2999493533c6259d1cb538653b
	https://git.kernel.org/stable/c/806401c20a0f9c51b6c8fd7035671e6ca841f6c2

Impacted products

Vendor

Product

Version

►

Linux

Version: 1ef3018f5af3da6376fae546e4dfc3f05f063815
Version: 1ef3018f5af3da6376fae546e4dfc3f05f063815

Linux

Version: 5.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.447Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/486e8de6e233ff2999493533c6259d1cb538653b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/806401c20a0f9c51b6c8fd7035671e6ca841f6c2"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47199",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:50:01.719714Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:37.887Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/en/tc_ct.c",
            "drivers/net/ethernet/mellanox/mlx5/core/en/tc_ct.h",
            "drivers/net/ethernet/mellanox/mlx5/core/en_tc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "486e8de6e233ff2999493533c6259d1cb538653b",
              "status": "affected",
              "version": "1ef3018f5af3da6376fae546e4dfc3f05f063815",
              "versionType": "git"
            },
            {
              "lessThan": "806401c20a0f9c51b6c8fd7035671e6ca841f6c2",
              "status": "affected",
              "version": "1ef3018f5af3da6376fae546e4dfc3f05f063815",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/en/tc_ct.c",
            "drivers/net/ethernet/mellanox/mlx5/core/en/tc_ct.h",
            "drivers/net/ethernet/mellanox/mlx5/core/en_tc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.7"
            },
            {
              "lessThan": "5.7",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.7",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: CT, Fix multiple allocations and memleak of mod acts\n\nCT clear action offload adds additional mod hdr actions to the\nflow\u0027s original mod actions in order to clear the registers which\nhold ct_state.\nWhen such flow also includes encap action, a neigh update event\ncan cause the driver to unoffload the flow and then reoffload it.\n\nEach time this happens, the ct clear handling adds that same set\nof mod hdr actions to reset ct_state until the max of mod hdr\nactions is reached.\n\nAlso the driver never releases the allocated mod hdr actions and\ncausing a memleak.\n\nFix above two issues by moving CT clear mod acts allocation\ninto the parsing actions phase and only use it when offloading the rule.\nThe release of mod acts will be done in the normal flow_put().\n\n backtrace:\n    [\u003c000000007316e2f3\u003e] krealloc+0x83/0xd0\n    [\u003c00000000ef157de1\u003e] mlx5e_mod_hdr_alloc+0x147/0x300 [mlx5_core]\n    [\u003c00000000970ce4ae\u003e] mlx5e_tc_match_to_reg_set_and_get_id+0xd7/0x240 [mlx5_core]\n    [\u003c0000000067c5fa17\u003e] mlx5e_tc_match_to_reg_set+0xa/0x20 [mlx5_core]\n    [\u003c00000000d032eb98\u003e] mlx5_tc_ct_entry_set_registers.isra.0+0x36/0xc0 [mlx5_core]\n    [\u003c00000000fd23b869\u003e] mlx5_tc_ct_flow_offload+0x272/0x1f10 [mlx5_core]\n    [\u003c000000004fc24acc\u003e] mlx5e_tc_offload_fdb_rules.part.0+0x150/0x620 [mlx5_core]\n    [\u003c00000000dc741c17\u003e] mlx5e_tc_encap_flows_add+0x489/0x690 [mlx5_core]\n    [\u003c00000000e92e49d7\u003e] mlx5e_rep_update_flows+0x6e4/0x9b0 [mlx5_core]\n    [\u003c00000000f60f5602\u003e] mlx5e_rep_neigh_update+0x39a/0x5d0 [mlx5_core]"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:14.321Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/486e8de6e233ff2999493533c6259d1cb538653b"
        },
        {
          "url": "https://git.kernel.org/stable/c/806401c20a0f9c51b6c8fd7035671e6ca841f6c2"
        }
      ],
      "title": "net/mlx5e: CT, Fix multiple allocations and memleak of mod acts",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47199",
    "datePublished": "2024-04-10T18:56:34.529Z",
    "dateReserved": "2024-03-25T09:12:14.117Z",
    "dateUpdated": "2025-05-04T07:06:14.321Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48634 (GCVE-0-2022-48634)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-06-19 12:56

Severity ?

5.3 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/gma500: Fix BUG: sleeping function called from invalid context errors gma_crtc_page_flip() was holding the event_lock spinlock while calling crtc_funcs->mode_set_base() which takes ww_mutex. The only reason to hold event_lock is to clear gma_crtc->page_flip_event on mode_set_base() errors. Instead unlock it after setting gma_crtc->page_flip_event and on errors re-take the lock and clear gma_crtc->page_flip_event it it is still set. This fixes the following WARN/stacktrace: [ 512.122953] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:870 [ 512.123004] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 1253, name: gnome-shell [ 512.123031] preempt_count: 1, expected: 0 [ 512.123048] RCU nest depth: 0, expected: 0 [ 512.123066] INFO: lockdep is turned off. [ 512.123080] irq event stamp: 0 [ 512.123094] hardirqs last enabled at (0): [<0000000000000000>] 0x0 [ 512.123134] hardirqs last disabled at (0): [<ffffffff8d0ec28c>] copy_process+0x9fc/0x1de0 [ 512.123176] softirqs last enabled at (0): [<ffffffff8d0ec28c>] copy_process+0x9fc/0x1de0 [ 512.123207] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 512.123233] Preemption disabled at: [ 512.123241] [<0000000000000000>] 0x0 [ 512.123275] CPU: 3 PID: 1253 Comm: gnome-shell Tainted: G W 5.19.0+ #1 [ 512.123304] Hardware name: Packard Bell dot s/SJE01_CT, BIOS V1.10 07/23/2013 [ 512.123323] Call Trace: [ 512.123346] <TASK> [ 512.123370] dump_stack_lvl+0x5b/0x77 [ 512.123412] __might_resched.cold+0xff/0x13a [ 512.123458] ww_mutex_lock+0x1e/0xa0 [ 512.123495] psb_gem_pin+0x2c/0x150 [gma500_gfx] [ 512.123601] gma_pipe_set_base+0x76/0x240 [gma500_gfx] [ 512.123708] gma_crtc_page_flip+0x95/0x130 [gma500_gfx] [ 512.123808] drm_mode_page_flip_ioctl+0x57d/0x5d0 [ 512.123897] ? drm_mode_cursor2_ioctl+0x10/0x10 [ 512.123936] drm_ioctl_kernel+0xa1/0x150 [ 512.123984] drm_ioctl+0x21f/0x420 [ 512.124025] ? drm_mode_cursor2_ioctl+0x10/0x10 [ 512.124070] ? rcu_read_lock_bh_held+0xb/0x60 [ 512.124104] ? lock_release+0x1ef/0x2d0 [ 512.124161] __x64_sys_ioctl+0x8d/0xd0 [ 512.124203] do_syscall_64+0x58/0x80 [ 512.124239] ? do_syscall_64+0x67/0x80 [ 512.124267] ? trace_hardirqs_on_prepare+0x55/0xe0 [ 512.124300] ? do_syscall_64+0x67/0x80 [ 512.124340] ? rcu_read_lock_sched_held+0x10/0x80 [ 512.124377] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 512.124411] RIP: 0033:0x7fcc4a70740f [ 512.124442] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 18 48 8b 44 24 18 64 48 2b 04 25 28 00 00 [ 512.124470] RSP: 002b:00007ffda73f5390 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 512.124503] RAX: ffffffffffffffda RBX: 000055cc9e474500 RCX: 00007fcc4a70740f [ 512.124524] RDX: 00007ffda73f5420 RSI: 00000000c01864b0 RDI: 0000000000000009 [ 512.124544] RBP: 00007ffda73f5420 R08: 000055cc9c0b0cb0 R09: 0000000000000034 [ 512.124564] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000c01864b0 [ 512.124584] R13: 0000000000000009 R14: 000055cc9df484d0 R15: 000055cc9af5d0c0 [ 512.124647] </TASK>

References

►

URL

Tags

	https://git.kernel.org/stable/c/c5812807e416618477d1bb0049727ce8bb8292fd
	https://git.kernel.org/stable/c/e5ae504c8623476e13032670f1a6d6344d53ec9b
	https://git.kernel.org/stable/c/a6ed7624bf4d0a32f2631e74828bca7b7bf15afd
	https://git.kernel.org/stable/c/63e37a79f7bd939314997e29c2f5a9f0ef184281

Impacted products

Vendor

Product

Version

►

Linux

Version: f76c22ce8fbbd03394eb9e2cd8c490d9ad2a116c
Version: f76c22ce8fbbd03394eb9e2cd8c490d9ad2a116c
Version: f76c22ce8fbbd03394eb9e2cd8c490d9ad2a116c
Version: f76c22ce8fbbd03394eb9e2cd8c490d9ad2a116c

Linux

Version: 5.6

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "LOW",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48634",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-16T20:42:08.256561Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T15:32:26.128Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.501Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c5812807e416618477d1bb0049727ce8bb8292fd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e5ae504c8623476e13032670f1a6d6344d53ec9b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a6ed7624bf4d0a32f2631e74828bca7b7bf15afd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/63e37a79f7bd939314997e29c2f5a9f0ef184281"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/gma500/gma_display.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "c5812807e416618477d1bb0049727ce8bb8292fd",
              "status": "affected",
              "version": "f76c22ce8fbbd03394eb9e2cd8c490d9ad2a116c",
              "versionType": "git"
            },
            {
              "lessThan": "e5ae504c8623476e13032670f1a6d6344d53ec9b",
              "status": "affected",
              "version": "f76c22ce8fbbd03394eb9e2cd8c490d9ad2a116c",
              "versionType": "git"
            },
            {
              "lessThan": "a6ed7624bf4d0a32f2631e74828bca7b7bf15afd",
              "status": "affected",
              "version": "f76c22ce8fbbd03394eb9e2cd8c490d9ad2a116c",
              "versionType": "git"
            },
            {
              "lessThan": "63e37a79f7bd939314997e29c2f5a9f0ef184281",
              "status": "affected",
              "version": "f76c22ce8fbbd03394eb9e2cd8c490d9ad2a116c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/gma500/gma_display.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.6"
            },
            {
              "lessThan": "5.6",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.6",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/gma500: Fix BUG: sleeping function called from invalid context errors\n\ngma_crtc_page_flip() was holding the event_lock spinlock while calling\ncrtc_funcs-\u003emode_set_base() which takes ww_mutex.\n\nThe only reason to hold event_lock is to clear gma_crtc-\u003epage_flip_event\non mode_set_base() errors.\n\nInstead unlock it after setting gma_crtc-\u003epage_flip_event and on\nerrors re-take the lock and clear gma_crtc-\u003epage_flip_event it\nit is still set.\n\nThis fixes the following WARN/stacktrace:\n\n[  512.122953] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:870\n[  512.123004] in_atomic(): 1, irqs_disabled(): 1, non_block: 0, pid: 1253, name: gnome-shell\n[  512.123031] preempt_count: 1, expected: 0\n[  512.123048] RCU nest depth: 0, expected: 0\n[  512.123066] INFO: lockdep is turned off.\n[  512.123080] irq event stamp: 0\n[  512.123094] hardirqs last  enabled at (0): [\u003c0000000000000000\u003e] 0x0\n[  512.123134] hardirqs last disabled at (0): [\u003cffffffff8d0ec28c\u003e] copy_process+0x9fc/0x1de0\n[  512.123176] softirqs last  enabled at (0): [\u003cffffffff8d0ec28c\u003e] copy_process+0x9fc/0x1de0\n[  512.123207] softirqs last disabled at (0): [\u003c0000000000000000\u003e] 0x0\n[  512.123233] Preemption disabled at:\n[  512.123241] [\u003c0000000000000000\u003e] 0x0\n[  512.123275] CPU: 3 PID: 1253 Comm: gnome-shell Tainted: G        W         5.19.0+ #1\n[  512.123304] Hardware name: Packard Bell dot s/SJE01_CT, BIOS V1.10 07/23/2013\n[  512.123323] Call Trace:\n[  512.123346]  \u003cTASK\u003e\n[  512.123370]  dump_stack_lvl+0x5b/0x77\n[  512.123412]  __might_resched.cold+0xff/0x13a\n[  512.123458]  ww_mutex_lock+0x1e/0xa0\n[  512.123495]  psb_gem_pin+0x2c/0x150 [gma500_gfx]\n[  512.123601]  gma_pipe_set_base+0x76/0x240 [gma500_gfx]\n[  512.123708]  gma_crtc_page_flip+0x95/0x130 [gma500_gfx]\n[  512.123808]  drm_mode_page_flip_ioctl+0x57d/0x5d0\n[  512.123897]  ? drm_mode_cursor2_ioctl+0x10/0x10\n[  512.123936]  drm_ioctl_kernel+0xa1/0x150\n[  512.123984]  drm_ioctl+0x21f/0x420\n[  512.124025]  ? drm_mode_cursor2_ioctl+0x10/0x10\n[  512.124070]  ? rcu_read_lock_bh_held+0xb/0x60\n[  512.124104]  ? lock_release+0x1ef/0x2d0\n[  512.124161]  __x64_sys_ioctl+0x8d/0xd0\n[  512.124203]  do_syscall_64+0x58/0x80\n[  512.124239]  ? do_syscall_64+0x67/0x80\n[  512.124267]  ? trace_hardirqs_on_prepare+0x55/0xe0\n[  512.124300]  ? do_syscall_64+0x67/0x80\n[  512.124340]  ? rcu_read_lock_sched_held+0x10/0x80\n[  512.124377]  entry_SYSCALL_64_after_hwframe+0x63/0xcd\n[  512.124411] RIP: 0033:0x7fcc4a70740f\n[  512.124442] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 \u003c89\u003e c2 3d 00 f0 ff ff 77 18 48 8b 44 24 18 64 48 2b 04 25 28 00 00\n[  512.124470] RSP: 002b:00007ffda73f5390 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n[  512.124503] RAX: ffffffffffffffda RBX: 000055cc9e474500 RCX: 00007fcc4a70740f\n[  512.124524] RDX: 00007ffda73f5420 RSI: 00000000c01864b0 RDI: 0000000000000009\n[  512.124544] RBP: 00007ffda73f5420 R08: 000055cc9c0b0cb0 R09: 0000000000000034\n[  512.124564] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000c01864b0\n[  512.124584] R13: 0000000000000009 R14: 000055cc9df484d0 R15: 000055cc9af5d0c0\n[  512.124647]  \u003c/TASK\u003e"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-06-19T12:56:12.356Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/c5812807e416618477d1bb0049727ce8bb8292fd"
        },
        {
          "url": "https://git.kernel.org/stable/c/e5ae504c8623476e13032670f1a6d6344d53ec9b"
        },
        {
          "url": "https://git.kernel.org/stable/c/a6ed7624bf4d0a32f2631e74828bca7b7bf15afd"
        },
        {
          "url": "https://git.kernel.org/stable/c/63e37a79f7bd939314997e29c2f5a9f0ef184281"
        }
      ],
      "title": "drm/gma500: Fix BUG: sleeping function called from invalid context errors",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48634",
    "datePublished": "2024-04-28T12:59:19.749Z",
    "dateReserved": "2024-02-25T13:44:28.315Z",
    "dateUpdated": "2025-06-19T12:56:12.356Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26673 (GCVE-0-2024-26673)

Vulnerability from cvelistv5

Published

2024-04-02 06:51

Modified

2025-05-04 08:53

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations - Disallow families other than NFPROTO_{IPV4,IPV6,INET}. - Disallow layer 4 protocol with no ports, since destination port is a mandatory attribute for this object.

References

►

URL

Tags

	https://git.kernel.org/stable/c/f549f340c91f08b938d60266e792ff7748dae483
	https://git.kernel.org/stable/c/65ee90efc928410c6f73b3d2e0afdd762652c09d
	https://git.kernel.org/stable/c/b775ced05489f4b77a35fe203e9aeb22f428e38f
	https://git.kernel.org/stable/c/0f501dae16b7099e69ee9b0d5c70b8f40fd30e98
	https://git.kernel.org/stable/c/cfe3550ea5df292c9e2d608e8c4560032391847e
	https://git.kernel.org/stable/c/38cc1605338d99205a263707f4dde76408d3e0e8
	https://git.kernel.org/stable/c/8059918a1377f2f1fff06af4f5a4ed3d5acd6bc4

Impacted products

Vendor

Product

Version

►

Linux

Version: 857b46027d6f91150797295752581b7155b9d0e1
Version: 857b46027d6f91150797295752581b7155b9d0e1
Version: 857b46027d6f91150797295752581b7155b9d0e1
Version: 857b46027d6f91150797295752581b7155b9d0e1
Version: 857b46027d6f91150797295752581b7155b9d0e1
Version: 857b46027d6f91150797295752581b7155b9d0e1
Version: 857b46027d6f91150797295752581b7155b9d0e1

Linux

Version: 5.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26673",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-03T15:12:33.164796Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:48:32.170Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:12.634Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f549f340c91f08b938d60266e792ff7748dae483"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/65ee90efc928410c6f73b3d2e0afdd762652c09d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b775ced05489f4b77a35fe203e9aeb22f428e38f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0f501dae16b7099e69ee9b0d5c70b8f40fd30e98"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cfe3550ea5df292c9e2d608e8c4560032391847e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/38cc1605338d99205a263707f4dde76408d3e0e8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8059918a1377f2f1fff06af4f5a4ed3d5acd6bc4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/netfilter/nft_ct.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f549f340c91f08b938d60266e792ff7748dae483",
              "status": "affected",
              "version": "857b46027d6f91150797295752581b7155b9d0e1",
              "versionType": "git"
            },
            {
              "lessThan": "65ee90efc928410c6f73b3d2e0afdd762652c09d",
              "status": "affected",
              "version": "857b46027d6f91150797295752581b7155b9d0e1",
              "versionType": "git"
            },
            {
              "lessThan": "b775ced05489f4b77a35fe203e9aeb22f428e38f",
              "status": "affected",
              "version": "857b46027d6f91150797295752581b7155b9d0e1",
              "versionType": "git"
            },
            {
              "lessThan": "0f501dae16b7099e69ee9b0d5c70b8f40fd30e98",
              "status": "affected",
              "version": "857b46027d6f91150797295752581b7155b9d0e1",
              "versionType": "git"
            },
            {
              "lessThan": "cfe3550ea5df292c9e2d608e8c4560032391847e",
              "status": "affected",
              "version": "857b46027d6f91150797295752581b7155b9d0e1",
              "versionType": "git"
            },
            {
              "lessThan": "38cc1605338d99205a263707f4dde76408d3e0e8",
              "status": "affected",
              "version": "857b46027d6f91150797295752581b7155b9d0e1",
              "versionType": "git"
            },
            {
              "lessThan": "8059918a1377f2f1fff06af4f5a4ed3d5acd6bc4",
              "status": "affected",
              "version": "857b46027d6f91150797295752581b7155b9d0e1",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/netfilter/nft_ct.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.3"
            },
            {
              "lessThan": "5.3",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.269",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.77",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.269",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.77",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.16",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.4",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations\n\n- Disallow families other than NFPROTO_{IPV4,IPV6,INET}.\n- Disallow layer 4 protocol with no ports, since destination port is a\n  mandatory attribute for this object."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:53:39.623Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f549f340c91f08b938d60266e792ff7748dae483"
        },
        {
          "url": "https://git.kernel.org/stable/c/65ee90efc928410c6f73b3d2e0afdd762652c09d"
        },
        {
          "url": "https://git.kernel.org/stable/c/b775ced05489f4b77a35fe203e9aeb22f428e38f"
        },
        {
          "url": "https://git.kernel.org/stable/c/0f501dae16b7099e69ee9b0d5c70b8f40fd30e98"
        },
        {
          "url": "https://git.kernel.org/stable/c/cfe3550ea5df292c9e2d608e8c4560032391847e"
        },
        {
          "url": "https://git.kernel.org/stable/c/38cc1605338d99205a263707f4dde76408d3e0e8"
        },
        {
          "url": "https://git.kernel.org/stable/c/8059918a1377f2f1fff06af4f5a4ed3d5acd6bc4"
        }
      ],
      "title": "netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26673",
    "datePublished": "2024-04-02T06:51:05.857Z",
    "dateReserved": "2024-02-19T14:20:24.150Z",
    "dateUpdated": "2025-05-04T08:53:39.623Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26879 (GCVE-0-2024-26879)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: clk: meson: Add missing clocks to axg_clk_regmaps Some clocks were missing from axg_clk_regmaps, which caused kernel panic during cat /sys/kernel/debug/clk/clk_summary [ 57.349402] Unable to handle kernel NULL pointer dereference at virtual address 00000000000001fc ... [ 57.430002] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 57.436900] pc : regmap_read+0x1c/0x88 [ 57.440608] lr : clk_regmap_gate_is_enabled+0x3c/0xb0 [ 57.445611] sp : ffff800082f1b690 [ 57.448888] x29: ffff800082f1b690 x28: 0000000000000000 x27: ffff800080eb9a70 [ 57.455961] x26: 0000000000000007 x25: 0000000000000016 x24: 0000000000000000 [ 57.463033] x23: ffff800080e8b488 x22: 0000000000000015 x21: ffff00000e7e7000 [ 57.470106] x20: ffff00000400ec00 x19: 0000000000000000 x18: ffffffffffffffff [ 57.477178] x17: 0000000000000000 x16: 0000000000000000 x15: ffff0000042a3000 [ 57.484251] x14: 0000000000000000 x13: ffff0000042a2fec x12: 0000000005f5e100 [ 57.491323] x11: abcc77118461cefd x10: 0000000000000020 x9 : ffff8000805e4b24 [ 57.498396] x8 : ffff0000028063c0 x7 : ffff800082f1b710 x6 : ffff800082f1b710 [ 57.505468] x5 : 00000000ffffffd0 x4 : ffff800082f1b6e0 x3 : 0000000000001000 [ 57.512541] x2 : ffff800082f1b6e4 x1 : 000000000000012c x0 : 0000000000000000 [ 57.519615] Call trace: [ 57.522030] regmap_read+0x1c/0x88 [ 57.525393] clk_regmap_gate_is_enabled+0x3c/0xb0 [ 57.530050] clk_core_is_enabled+0x44/0x120 [ 57.534190] clk_summary_show_subtree+0x154/0x2f0 [ 57.538847] clk_summary_show_subtree+0x220/0x2f0 [ 57.543505] clk_summary_show_subtree+0x220/0x2f0 [ 57.548162] clk_summary_show_subtree+0x220/0x2f0 [ 57.552820] clk_summary_show_subtree+0x220/0x2f0 [ 57.557477] clk_summary_show_subtree+0x220/0x2f0 [ 57.562135] clk_summary_show_subtree+0x220/0x2f0 [ 57.566792] clk_summary_show_subtree+0x220/0x2f0 [ 57.571450] clk_summary_show+0x84/0xb8 [ 57.575245] seq_read_iter+0x1bc/0x4b8 [ 57.578954] seq_read+0x8c/0xd0 [ 57.582059] full_proxy_read+0x68/0xc8 [ 57.585767] vfs_read+0xb0/0x268 [ 57.588959] ksys_read+0x70/0x108 [ 57.592236] __arm64_sys_read+0x24/0x38 [ 57.596031] invoke_syscall+0x50/0x128 [ 57.599740] el0_svc_common.constprop.0+0x48/0xf8 [ 57.604397] do_el0_svc+0x28/0x40 [ 57.607675] el0_svc+0x34/0xb8 [ 57.610694] el0t_64_sync_handler+0x13c/0x158 [ 57.615006] el0t_64_sync+0x190/0x198 [ 57.618635] Code: a9bd7bfd 910003fd a90153f3 aa0003f3 (b941fc00) [ 57.624668] ---[ end trace 0000000000000000 ]--- [jbrunet: add missing Fixes tag]

References

►

URL

Tags

	https://git.kernel.org/stable/c/a03ed00787b0ce7a83eebabd0fa95ecc4a5cac84
	https://git.kernel.org/stable/c/7ae1b0dc12ec407f12f80b49d22c6ad2308e2202
	https://git.kernel.org/stable/c/0cbefc7b5bdad86b18a263d837450cdc9a56f8d7
	https://git.kernel.org/stable/c/a860aaebacbc908fa06e2642402058f40bfffe10
	https://git.kernel.org/stable/c/9f3e5df38b4528213449e55b80f0316864f2a1c8
	https://git.kernel.org/stable/c/ba535bce57e71463a86f8b33a0ea88c26e3a6418

Impacted products

Vendor

Product

Version

►

Linux

Version: 14ebb3154b8f3d562cb18331b08ff1a22609ae59
Version: 14ebb3154b8f3d562cb18331b08ff1a22609ae59
Version: 14ebb3154b8f3d562cb18331b08ff1a22609ae59
Version: 14ebb3154b8f3d562cb18331b08ff1a22609ae59
Version: 14ebb3154b8f3d562cb18331b08ff1a22609ae59
Version: 14ebb3154b8f3d562cb18331b08ff1a22609ae59

Linux

Version: 5.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26879",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:41:23.847903Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:48:03.365Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:04.239Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a03ed00787b0ce7a83eebabd0fa95ecc4a5cac84"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7ae1b0dc12ec407f12f80b49d22c6ad2308e2202"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0cbefc7b5bdad86b18a263d837450cdc9a56f8d7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a860aaebacbc908fa06e2642402058f40bfffe10"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9f3e5df38b4528213449e55b80f0316864f2a1c8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ba535bce57e71463a86f8b33a0ea88c26e3a6418"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/meson/axg.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "a03ed00787b0ce7a83eebabd0fa95ecc4a5cac84",
              "status": "affected",
              "version": "14ebb3154b8f3d562cb18331b08ff1a22609ae59",
              "versionType": "git"
            },
            {
              "lessThan": "7ae1b0dc12ec407f12f80b49d22c6ad2308e2202",
              "status": "affected",
              "version": "14ebb3154b8f3d562cb18331b08ff1a22609ae59",
              "versionType": "git"
            },
            {
              "lessThan": "0cbefc7b5bdad86b18a263d837450cdc9a56f8d7",
              "status": "affected",
              "version": "14ebb3154b8f3d562cb18331b08ff1a22609ae59",
              "versionType": "git"
            },
            {
              "lessThan": "a860aaebacbc908fa06e2642402058f40bfffe10",
              "status": "affected",
              "version": "14ebb3154b8f3d562cb18331b08ff1a22609ae59",
              "versionType": "git"
            },
            {
              "lessThan": "9f3e5df38b4528213449e55b80f0316864f2a1c8",
              "status": "affected",
              "version": "14ebb3154b8f3d562cb18331b08ff1a22609ae59",
              "versionType": "git"
            },
            {
              "lessThan": "ba535bce57e71463a86f8b33a0ea88c26e3a6418",
              "status": "affected",
              "version": "14ebb3154b8f3d562cb18331b08ff1a22609ae59",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/meson/axg.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.11"
            },
            {
              "lessThan": "5.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: meson: Add missing clocks to axg_clk_regmaps\n\nSome clocks were missing from axg_clk_regmaps, which caused kernel panic\nduring cat /sys/kernel/debug/clk/clk_summary\n\n[   57.349402] Unable to handle kernel NULL pointer dereference at virtual address 00000000000001fc\n...\n[   57.430002] pstate: 60000005 (nZCv daif -PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n[   57.436900] pc : regmap_read+0x1c/0x88\n[   57.440608] lr : clk_regmap_gate_is_enabled+0x3c/0xb0\n[   57.445611] sp : ffff800082f1b690\n[   57.448888] x29: ffff800082f1b690 x28: 0000000000000000 x27: ffff800080eb9a70\n[   57.455961] x26: 0000000000000007 x25: 0000000000000016 x24: 0000000000000000\n[   57.463033] x23: ffff800080e8b488 x22: 0000000000000015 x21: ffff00000e7e7000\n[   57.470106] x20: ffff00000400ec00 x19: 0000000000000000 x18: ffffffffffffffff\n[   57.477178] x17: 0000000000000000 x16: 0000000000000000 x15: ffff0000042a3000\n[   57.484251] x14: 0000000000000000 x13: ffff0000042a2fec x12: 0000000005f5e100\n[   57.491323] x11: abcc77118461cefd x10: 0000000000000020 x9 : ffff8000805e4b24\n[   57.498396] x8 : ffff0000028063c0 x7 : ffff800082f1b710 x6 : ffff800082f1b710\n[   57.505468] x5 : 00000000ffffffd0 x4 : ffff800082f1b6e0 x3 : 0000000000001000\n[   57.512541] x2 : ffff800082f1b6e4 x1 : 000000000000012c x0 : 0000000000000000\n[   57.519615] Call trace:\n[   57.522030]  regmap_read+0x1c/0x88\n[   57.525393]  clk_regmap_gate_is_enabled+0x3c/0xb0\n[   57.530050]  clk_core_is_enabled+0x44/0x120\n[   57.534190]  clk_summary_show_subtree+0x154/0x2f0\n[   57.538847]  clk_summary_show_subtree+0x220/0x2f0\n[   57.543505]  clk_summary_show_subtree+0x220/0x2f0\n[   57.548162]  clk_summary_show_subtree+0x220/0x2f0\n[   57.552820]  clk_summary_show_subtree+0x220/0x2f0\n[   57.557477]  clk_summary_show_subtree+0x220/0x2f0\n[   57.562135]  clk_summary_show_subtree+0x220/0x2f0\n[   57.566792]  clk_summary_show_subtree+0x220/0x2f0\n[   57.571450]  clk_summary_show+0x84/0xb8\n[   57.575245]  seq_read_iter+0x1bc/0x4b8\n[   57.578954]  seq_read+0x8c/0xd0\n[   57.582059]  full_proxy_read+0x68/0xc8\n[   57.585767]  vfs_read+0xb0/0x268\n[   57.588959]  ksys_read+0x70/0x108\n[   57.592236]  __arm64_sys_read+0x24/0x38\n[   57.596031]  invoke_syscall+0x50/0x128\n[   57.599740]  el0_svc_common.constprop.0+0x48/0xf8\n[   57.604397]  do_el0_svc+0x28/0x40\n[   57.607675]  el0_svc+0x34/0xb8\n[   57.610694]  el0t_64_sync_handler+0x13c/0x158\n[   57.615006]  el0t_64_sync+0x190/0x198\n[   57.618635] Code: a9bd7bfd 910003fd a90153f3 aa0003f3 (b941fc00)\n[   57.624668] ---[ end trace 0000000000000000 ]---\n\n[jbrunet: add missing Fixes tag]"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:42.628Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/a03ed00787b0ce7a83eebabd0fa95ecc4a5cac84"
        },
        {
          "url": "https://git.kernel.org/stable/c/7ae1b0dc12ec407f12f80b49d22c6ad2308e2202"
        },
        {
          "url": "https://git.kernel.org/stable/c/0cbefc7b5bdad86b18a263d837450cdc9a56f8d7"
        },
        {
          "url": "https://git.kernel.org/stable/c/a860aaebacbc908fa06e2642402058f40bfffe10"
        },
        {
          "url": "https://git.kernel.org/stable/c/9f3e5df38b4528213449e55b80f0316864f2a1c8"
        },
        {
          "url": "https://git.kernel.org/stable/c/ba535bce57e71463a86f8b33a0ea88c26e3a6418"
        }
      ],
      "title": "clk: meson: Add missing clocks to axg_clk_regmaps",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26879",
    "datePublished": "2024-04-17T10:27:36.466Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:42.628Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48704 (GCVE-0-2022-48704)

Vulnerability from cvelistv5

Published

2024-05-03 17:45

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: add a force flush to delay work when radeon Although radeon card fence and wait for gpu to finish processing current batch rings, there is still a corner case that radeon lockup work queue may not be fully flushed, and meanwhile the radeon_suspend_kms() function has called pci_set_power_state() to put device in D3hot state. Per PCI spec rev 4.0 on 5.3.1.4.1 D3hot State. > Configuration and Message requests are the only TLPs accepted by a Function in > the D3hot state. All other received Requests must be handled as Unsupported Requests, > and all received Completions may optionally be handled as Unexpected Completions. This issue will happen in following logs: Unable to handle kernel paging request at virtual address 00008800e0008010 CPU 0 kworker/0:3(131): Oops 0 pc = [<ffffffff811bea5c>] ra = [<ffffffff81240844>] ps = 0000 Tainted: G W pc is at si_gpu_check_soft_reset+0x3c/0x240 ra is at si_dma_is_lockup+0x34/0xd0 v0 = 0000000000000000 t0 = fff08800e0008010 t1 = 0000000000010000 t2 = 0000000000008010 t3 = fff00007e3c00000 t4 = fff00007e3c00258 t5 = 000000000000ffff t6 = 0000000000000001 t7 = fff00007ef078000 s0 = fff00007e3c016e8 s1 = fff00007e3c00000 s2 = fff00007e3c00018 s3 = fff00007e3c00000 s4 = fff00007fff59d80 s5 = 0000000000000000 s6 = fff00007ef07bd98 a0 = fff00007e3c00000 a1 = fff00007e3c016e8 a2 = 0000000000000008 a3 = 0000000000000001 a4 = 8f5c28f5c28f5c29 a5 = ffffffff810f4338 t8 = 0000000000000275 t9 = ffffffff809b66f8 t10 = ff6769c5d964b800 t11= 000000000000b886 pv = ffffffff811bea20 at = 0000000000000000 gp = ffffffff81d89690 sp = 00000000aa814126 Disabling lock debugging due to kernel taint Trace: [<ffffffff81240844>] si_dma_is_lockup+0x34/0xd0 [<ffffffff81119610>] radeon_fence_check_lockup+0xd0/0x290 [<ffffffff80977010>] process_one_work+0x280/0x550 [<ffffffff80977350>] worker_thread+0x70/0x7c0 [<ffffffff80977410>] worker_thread+0x130/0x7c0 [<ffffffff80982040>] kthread+0x200/0x210 [<ffffffff809772e0>] worker_thread+0x0/0x7c0 [<ffffffff80981f8c>] kthread+0x14c/0x210 [<ffffffff80911658>] ret_from_kernel_thread+0x18/0x20 [<ffffffff80981e40>] kthread+0x0/0x210 Code: ad3e0008 43f0074a ad7e0018 ad9e0020 8c3001e8 40230101 <88210000> 4821ed21 So force lockup work queue flush to fix this problem.

References

►

URL

Tags

	https://git.kernel.org/stable/c/b878da58df2c40b08914d3960e2224040fd1fbfe
	https://git.kernel.org/stable/c/4e25e8f27fdbdc6fd55cc572a9939bf24500b9e8
	https://git.kernel.org/stable/c/c0a45f41fde4a0f2c900f719817493ee5c4a5aa3
	https://git.kernel.org/stable/c/c72d97146fc5a4dff381b1737f6167e89860430d
	https://git.kernel.org/stable/c/826b46fd5974113515abe9e4fc8178009a8ce18c
	https://git.kernel.org/stable/c/5a7a5b2edac4b05abd744eeaebda46d9dacd952d
	https://git.kernel.org/stable/c/16cb367daa446923d82e332537f446a4cc784b40
	https://git.kernel.org/stable/c/f461950fdc374a3ada5a63c669d997de4600dffe

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.838Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b878da58df2c40b08914d3960e2224040fd1fbfe"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4e25e8f27fdbdc6fd55cc572a9939bf24500b9e8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c0a45f41fde4a0f2c900f719817493ee5c4a5aa3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c72d97146fc5a4dff381b1737f6167e89860430d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/826b46fd5974113515abe9e4fc8178009a8ce18c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5a7a5b2edac4b05abd744eeaebda46d9dacd952d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/16cb367daa446923d82e332537f446a4cc784b40"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f461950fdc374a3ada5a63c669d997de4600dffe"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48704",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:43:29.607532Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:27.016Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/radeon/radeon_device.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b878da58df2c40b08914d3960e2224040fd1fbfe",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4e25e8f27fdbdc6fd55cc572a9939bf24500b9e8",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "c0a45f41fde4a0f2c900f719817493ee5c4a5aa3",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "c72d97146fc5a4dff381b1737f6167e89860430d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "826b46fd5974113515abe9e4fc8178009a8ce18c",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5a7a5b2edac4b05abd744eeaebda46d9dacd952d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "16cb367daa446923d82e332537f446a4cc784b40",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f461950fdc374a3ada5a63c669d997de4600dffe",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/radeon/radeon_device.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.328",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.258",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.328",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.293",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.258",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/radeon: add a force flush to delay work when radeon\n\nAlthough radeon card fence and wait for gpu to finish processing current batch rings,\nthere is still a corner case that radeon lockup work queue may not be fully flushed,\nand meanwhile the radeon_suspend_kms() function has called pci_set_power_state() to\nput device in D3hot state.\nPer PCI spec rev 4.0 on 5.3.1.4.1 D3hot State.\n\u003e Configuration and Message requests are the only TLPs accepted by a Function in\n\u003e the D3hot state. All other received Requests must be handled as Unsupported Requests,\n\u003e and all received Completions may optionally be handled as Unexpected Completions.\nThis issue will happen in following logs:\nUnable to handle kernel paging request at virtual address 00008800e0008010\nCPU 0 kworker/0:3(131): Oops 0\npc = [\u003cffffffff811bea5c\u003e]  ra = [\u003cffffffff81240844\u003e]  ps = 0000 Tainted: G        W\npc is at si_gpu_check_soft_reset+0x3c/0x240\nra is at si_dma_is_lockup+0x34/0xd0\nv0 = 0000000000000000  t0 = fff08800e0008010  t1 = 0000000000010000\nt2 = 0000000000008010  t3 = fff00007e3c00000  t4 = fff00007e3c00258\nt5 = 000000000000ffff  t6 = 0000000000000001  t7 = fff00007ef078000\ns0 = fff00007e3c016e8  s1 = fff00007e3c00000  s2 = fff00007e3c00018\ns3 = fff00007e3c00000  s4 = fff00007fff59d80  s5 = 0000000000000000\ns6 = fff00007ef07bd98\na0 = fff00007e3c00000  a1 = fff00007e3c016e8  a2 = 0000000000000008\na3 = 0000000000000001  a4 = 8f5c28f5c28f5c29  a5 = ffffffff810f4338\nt8 = 0000000000000275  t9 = ffffffff809b66f8  t10 = ff6769c5d964b800\nt11= 000000000000b886  pv = ffffffff811bea20  at = 0000000000000000\ngp = ffffffff81d89690  sp = 00000000aa814126\nDisabling lock debugging due to kernel taint\nTrace:\n[\u003cffffffff81240844\u003e] si_dma_is_lockup+0x34/0xd0\n[\u003cffffffff81119610\u003e] radeon_fence_check_lockup+0xd0/0x290\n[\u003cffffffff80977010\u003e] process_one_work+0x280/0x550\n[\u003cffffffff80977350\u003e] worker_thread+0x70/0x7c0\n[\u003cffffffff80977410\u003e] worker_thread+0x130/0x7c0\n[\u003cffffffff80982040\u003e] kthread+0x200/0x210\n[\u003cffffffff809772e0\u003e] worker_thread+0x0/0x7c0\n[\u003cffffffff80981f8c\u003e] kthread+0x14c/0x210\n[\u003cffffffff80911658\u003e] ret_from_kernel_thread+0x18/0x20\n[\u003cffffffff80981e40\u003e] kthread+0x0/0x210\n Code: ad3e0008  43f0074a  ad7e0018  ad9e0020  8c3001e8  40230101\n \u003c88210000\u003e 4821ed21\nSo force lockup work queue flush to fix this problem."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:23.459Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b878da58df2c40b08914d3960e2224040fd1fbfe"
        },
        {
          "url": "https://git.kernel.org/stable/c/4e25e8f27fdbdc6fd55cc572a9939bf24500b9e8"
        },
        {
          "url": "https://git.kernel.org/stable/c/c0a45f41fde4a0f2c900f719817493ee5c4a5aa3"
        },
        {
          "url": "https://git.kernel.org/stable/c/c72d97146fc5a4dff381b1737f6167e89860430d"
        },
        {
          "url": "https://git.kernel.org/stable/c/826b46fd5974113515abe9e4fc8178009a8ce18c"
        },
        {
          "url": "https://git.kernel.org/stable/c/5a7a5b2edac4b05abd744eeaebda46d9dacd952d"
        },
        {
          "url": "https://git.kernel.org/stable/c/16cb367daa446923d82e332537f446a4cc784b40"
        },
        {
          "url": "https://git.kernel.org/stable/c/f461950fdc374a3ada5a63c669d997de4600dffe"
        }
      ],
      "title": "drm/radeon: add a force flush to delay work when radeon",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48704",
    "datePublished": "2024-05-03T17:45:51.299Z",
    "dateReserved": "2024-05-03T14:55:07.146Z",
    "dateUpdated": "2025-05-04T08:21:23.459Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-2201 (GCVE-0-2024-2201)

Vulnerability from cvelistv5

Published

2024-12-19 20:28

Modified

2025-01-09 16:40

Severity ?

4.7 (Medium) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-1423

Summary

A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems.

References

►

URL

Tags

	https://www.kb.cert.org/vuls/id/155143
	https://github.com/vusec/inspectre-gadget?tab=readme-ov-file
	http://www.openwall.com/lists/oss-security/2024/04/09/15
	http://www.openwall.com/lists/oss-security/2024/05/07/7
	http://xenbits.xen.org/xsa/advisory-456.html
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6QKNCPX7CJUK4I6BRGABAUQK2DMQZUCA/
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D5OK6MH75S7YWD34EWW7QIZTS627RIE3/
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RYAZ7P6YFJ2E3FHKAGIKHWS46KYMMTZH/
	https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/branch-history-injection.htm

Impacted products

	Vendor	Product	Version
	Xen	Xen	Version: See advisory "x86: Native Branch History Injection"

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 4.7,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-2201",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-31T18:51:54.984364Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-01-09T16:40:32.522Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Xen",
          "vendor": "Xen",
          "versions": [
            {
              "status": "affected",
              "version": "See advisory \"x86: Native Branch History Injection\""
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-1423",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-12-19T20:29:32.134Z",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "url": "https://www.kb.cert.org/vuls/id/155143"
        },
        {
          "url": "https://github.com/vusec/inspectre-gadget?tab=readme-ov-file"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2024/04/09/15"
        },
        {
          "url": "http://www.openwall.com/lists/oss-security/2024/05/07/7"
        },
        {
          "url": "http://xenbits.xen.org/xsa/advisory-456.html"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6QKNCPX7CJUK4I6BRGABAUQK2DMQZUCA/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D5OK6MH75S7YWD34EWW7QIZTS627RIE3/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RYAZ7P6YFJ2E3FHKAGIKHWS46KYMMTZH/"
        },
        {
          "url": "https://www.intel.com/content/www/us/en/developer/articles/technical/software-security-guidance/advisory-guidance/branch-history-injection.htm"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "CVE-2024-2201",
      "x_generator": {
        "engine": "VINCE 3.0.11",
        "env": "prod",
        "origin": "https://cveawg.mitre.org/api/cve/CVE-2024-2201"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2024-2201",
    "datePublished": "2024-12-19T20:28:31.596Z",
    "dateReserved": "2024-03-05T19:12:39.649Z",
    "dateUpdated": "2025-01-09T16:40:32.522Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48668 (GCVE-0-2022-48668)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: smb3: fix temporary data corruption in collapse range collapse range doesn't discard the affected cached region so can risk temporarily corrupting the file data. This fixes xfstest generic/031 I also decided to merge a minor cleanup to this into the same patch (avoiding rereading inode size repeatedly unnecessarily) to make it clearer.

References

►

URL

Tags

	https://git.kernel.org/stable/c/49523a4732204bdacbf3941a016503ddb4ddb3b9
	https://git.kernel.org/stable/c/fa30a81f255a56cccd89552cd6ce7ea6e8d8acc4

Impacted products

Vendor

Product

Version

►

Linux

Version: 5476b5dd82c8bb9d0dd426f96575ae656cede140
Version: 5476b5dd82c8bb9d0dd426f96575ae656cede140

Linux

Version: 5.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48668",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:39:50.792939Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:37.389Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.743Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/49523a4732204bdacbf3941a016503ddb4ddb3b9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fa30a81f255a56cccd89552cd6ce7ea6e8d8acc4"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/cifs/smb2ops.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "49523a4732204bdacbf3941a016503ddb4ddb3b9",
              "status": "affected",
              "version": "5476b5dd82c8bb9d0dd426f96575ae656cede140",
              "versionType": "git"
            },
            {
              "lessThan": "fa30a81f255a56cccd89552cd6ce7ea6e8d8acc4",
              "status": "affected",
              "version": "5476b5dd82c8bb9d0dd426f96575ae656cede140",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/cifs/smb2ops.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.13"
            },
            {
              "lessThan": "5.13",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb3: fix temporary data corruption in collapse range\n\ncollapse range doesn\u0027t discard the affected cached region\nso can risk temporarily corrupting the file data. This\nfixes xfstest generic/031\n\nI also decided to merge a minor cleanup to this into the same patch\n(avoiding rereading inode size repeatedly unnecessarily) to make it\nclearer."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:54.627Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/49523a4732204bdacbf3941a016503ddb4ddb3b9"
        },
        {
          "url": "https://git.kernel.org/stable/c/fa30a81f255a56cccd89552cd6ce7ea6e8d8acc4"
        }
      ],
      "title": "smb3: fix temporary data corruption in collapse range",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48668",
    "datePublished": "2024-04-28T13:01:59.015Z",
    "dateReserved": "2024-02-25T13:44:28.320Z",
    "dateUpdated": "2025-05-04T08:20:54.627Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26852 (GCVE-0-2024-26852)

Vulnerability from cvelistv5

Published

2024-04-17 10:17

Modified

2025-05-04 08:57

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: net/ipv6: avoid possible UAF in ip6_route_mpath_notify() syzbot found another use-after-free in ip6_route_mpath_notify() [1] Commit f7225172f25a ("net/ipv6: prevent use after free in ip6_route_mpath_notify") was not able to fix the root cause. We need to defer the fib6_info_release() calls after ip6_route_mpath_notify(), in the cleanup phase. [1] BUG: KASAN: slab-use-after-free in rt6_fill_node+0x1460/0x1ac0 Read of size 4 at addr ffff88809a07fc64 by task syz-executor.2/23037 CPU: 0 PID: 23037 Comm: syz-executor.2 Not tainted 6.8.0-rc4-syzkaller-01035-gea7f3cfaa588 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 Call Trace: <TASK> __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x1e7/0x2e0 lib/dump_stack.c:106 print_address_description mm/kasan/report.c:377 [inline] print_report+0x167/0x540 mm/kasan/report.c:488 kasan_report+0x142/0x180 mm/kasan/report.c:601 rt6_fill_node+0x1460/0x1ac0 inet6_rt_notify+0x13b/0x290 net/ipv6/route.c:6184 ip6_route_mpath_notify net/ipv6/route.c:5198 [inline] ip6_route_multipath_add net/ipv6/route.c:5404 [inline] inet6_rtm_newroute+0x1d0f/0x2300 net/ipv6/route.c:5517 rtnetlink_rcv_msg+0x885/0x1040 net/core/rtnetlink.c:6597 netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2543 netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline] netlink_unicast+0x7ea/0x980 net/netlink/af_netlink.c:1367 netlink_sendmsg+0xa3b/0xd70 net/netlink/af_netlink.c:1908 sock_sendmsg_nosec net/socket.c:730 [inline] __sock_sendmsg+0x221/0x270 net/socket.c:745 ____sys_sendmsg+0x525/0x7d0 net/socket.c:2584 ___sys_sendmsg net/socket.c:2638 [inline] __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2667 do_syscall_64+0xf9/0x240 entry_SYSCALL_64_after_hwframe+0x6f/0x77 RIP: 0033:0x7f73dd87dda9 Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f73de6550c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f73dd9ac050 RCX: 00007f73dd87dda9 RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000005 RBP: 00007f73dd8ca47a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 000000000000006e R14: 00007f73dd9ac050 R15: 00007ffdbdeb7858 </TASK> Allocated by task 23037: kasan_save_stack mm/kasan/common.c:47 [inline] kasan_save_track+0x3f/0x80 mm/kasan/common.c:68 poison_kmalloc_redzone mm/kasan/common.c:372 [inline] __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:389 kasan_kmalloc include/linux/kasan.h:211 [inline] __do_kmalloc_node mm/slub.c:3981 [inline] __kmalloc+0x22e/0x490 mm/slub.c:3994 kmalloc include/linux/slab.h:594 [inline] kzalloc include/linux/slab.h:711 [inline] fib6_info_alloc+0x2e/0xf0 net/ipv6/ip6_fib.c:155 ip6_route_info_create+0x445/0x12b0 net/ipv6/route.c:3758 ip6_route_multipath_add net/ipv6/route.c:5298 [inline] inet6_rtm_newroute+0x744/0x2300 net/ipv6/route.c:5517 rtnetlink_rcv_msg+0x885/0x1040 net/core/rtnetlink.c:6597 netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2543 netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline] netlink_unicast+0x7ea/0x980 net/netlink/af_netlink.c:1367 netlink_sendmsg+0xa3b/0xd70 net/netlink/af_netlink.c:1908 sock_sendmsg_nosec net/socket.c:730 [inline] __sock_sendmsg+0x221/0x270 net/socket.c:745 ____sys_sendmsg+0x525/0x7d0 net/socket.c:2584 ___sys_sendmsg net/socket.c:2638 [inline] __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2667 do_syscall_64+0xf9/0x240 entry_SYSCALL_64_after_hwframe+0x6f/0x77 Freed by task 16: kasan_save_stack mm/kasan/common.c:47 [inline] kasan_save_track+0x3f/0x80 mm/kasan/common.c:68 kasan_save_free_info+0x4e/0x60 mm/kasan/generic.c:640 poison_slab_object+0xa6/0xe0 m ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/31ea5bcc7d4cd1423de6be327a2c034725704136
	https://git.kernel.org/stable/c/664f9c647260cc9d68b4e31d9899530d89dd045e
	https://git.kernel.org/stable/c/79ce2e54cc0ae366f45516c00bf1b19aa43e9abe
	https://git.kernel.org/stable/c/cae3303257950d03ffec2df4a45e836f10d26c24
	https://git.kernel.org/stable/c/394334fe2ae3b9f1e2332b873857e84cb28aac18
	https://git.kernel.org/stable/c/ed883060c38721ed828061f6c0c30e5147326c9a
	https://git.kernel.org/stable/c/61b34f73cdbdb8eaf9ea12e9e2eb3b29716c4dda
	https://git.kernel.org/stable/c/685f7d531264599b3f167f1e94bbd22f120e5fab

Impacted products

Vendor

Product

Version

►

Linux

Version: 3b1137fe74829e021f483756a648cbb87c8a1b4a
Version: 3b1137fe74829e021f483756a648cbb87c8a1b4a
Version: 3b1137fe74829e021f483756a648cbb87c8a1b4a
Version: 3b1137fe74829e021f483756a648cbb87c8a1b4a
Version: 3b1137fe74829e021f483756a648cbb87c8a1b4a
Version: 3b1137fe74829e021f483756a648cbb87c8a1b4a
Version: 3b1137fe74829e021f483756a648cbb87c8a1b4a
Version: 3b1137fe74829e021f483756a648cbb87c8a1b4a

Linux

Version: 4.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.699Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/31ea5bcc7d4cd1423de6be327a2c034725704136"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/664f9c647260cc9d68b4e31d9899530d89dd045e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/79ce2e54cc0ae366f45516c00bf1b19aa43e9abe"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cae3303257950d03ffec2df4a45e836f10d26c24"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/394334fe2ae3b9f1e2332b873857e84cb28aac18"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ed883060c38721ed828061f6c0c30e5147326c9a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/61b34f73cdbdb8eaf9ea12e9e2eb3b29716c4dda"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/685f7d531264599b3f167f1e94bbd22f120e5fab"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "31ea5bcc7d4c",
                "status": "affected",
                "version": "3b1137fe7482",
                "versionType": "custom"
              },
              {
                "lessThan": "664f9c647260",
                "status": "affected",
                "version": "3b1137fe7482",
                "versionType": "custom"
              },
              {
                "lessThan": "79ce2e54cc0a",
                "status": "affected",
                "version": "3b1137fe7482",
                "versionType": "custom"
              },
              {
                "lessThan": "cae330325795",
                "status": "affected",
                "version": "3b1137fe7482",
                "versionType": "custom"
              },
              {
                "lessThan": "394334fe2ae3",
                "status": "affected",
                "version": "3b1137fe7482",
                "versionType": "custom"
              },
              {
                "lessThan": "ed883060c387",
                "status": "affected",
                "version": "3b1137fe7482",
                "versionType": "custom"
              },
              {
                "lessThan": "61b34f73cdbd",
                "status": "affected",
                "version": "3b1137fe7482",
                "versionType": "custom"
              },
              {
                "lessThan": "685f7d531264",
                "status": "affected",
                "version": "3b1137fe7482",
                "versionType": "custom"
              },
              {
                "status": "affected",
                "version": "4.11"
              },
              {
                "lessThan": "4.11",
                "status": "unaffected",
                "version": "0",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "4.20",
                "status": "unaffected",
                "version": "4.19.310",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "5.5",
                "status": "unaffected",
                "version": "5.4.272",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "5.11",
                "status": "unaffected",
                "version": "5.10.213",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "5.16",
                "status": "unaffected",
                "version": "5.15.152",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "6.2",
                "status": "unaffected",
                "version": "6.1.82",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "6.7",
                "status": "unaffected",
                "version": "6.6.22",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "6.8",
                "status": "unaffected",
                "version": "6.7.10",
                "versionType": "custom"
              },
              {
                "lessThanOrEqual": "*",
                "status": "unaffected",
                "version": "6.8",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26852",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-19T20:41:29.771297Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-02-11T21:48:49.822Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/ipv6/route.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "31ea5bcc7d4cd1423de6be327a2c034725704136",
              "status": "affected",
              "version": "3b1137fe74829e021f483756a648cbb87c8a1b4a",
              "versionType": "git"
            },
            {
              "lessThan": "664f9c647260cc9d68b4e31d9899530d89dd045e",
              "status": "affected",
              "version": "3b1137fe74829e021f483756a648cbb87c8a1b4a",
              "versionType": "git"
            },
            {
              "lessThan": "79ce2e54cc0ae366f45516c00bf1b19aa43e9abe",
              "status": "affected",
              "version": "3b1137fe74829e021f483756a648cbb87c8a1b4a",
              "versionType": "git"
            },
            {
              "lessThan": "cae3303257950d03ffec2df4a45e836f10d26c24",
              "status": "affected",
              "version": "3b1137fe74829e021f483756a648cbb87c8a1b4a",
              "versionType": "git"
            },
            {
              "lessThan": "394334fe2ae3b9f1e2332b873857e84cb28aac18",
              "status": "affected",
              "version": "3b1137fe74829e021f483756a648cbb87c8a1b4a",
              "versionType": "git"
            },
            {
              "lessThan": "ed883060c38721ed828061f6c0c30e5147326c9a",
              "status": "affected",
              "version": "3b1137fe74829e021f483756a648cbb87c8a1b4a",
              "versionType": "git"
            },
            {
              "lessThan": "61b34f73cdbdb8eaf9ea12e9e2eb3b29716c4dda",
              "status": "affected",
              "version": "3b1137fe74829e021f483756a648cbb87c8a1b4a",
              "versionType": "git"
            },
            {
              "lessThan": "685f7d531264599b3f167f1e94bbd22f120e5fab",
              "status": "affected",
              "version": "3b1137fe74829e021f483756a648cbb87c8a1b4a",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/ipv6/route.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.11"
            },
            {
              "lessThan": "4.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.310",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.272",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.152",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.22",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.10",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.310",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.272",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.213",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.152",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.82",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.22",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.10",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/ipv6: avoid possible UAF in ip6_route_mpath_notify()\n\nsyzbot found another use-after-free in ip6_route_mpath_notify() [1]\n\nCommit f7225172f25a (\"net/ipv6: prevent use after free in\nip6_route_mpath_notify\") was not able to fix the root cause.\n\nWe need to defer the fib6_info_release() calls after\nip6_route_mpath_notify(), in the cleanup phase.\n\n[1]\nBUG: KASAN: slab-use-after-free in rt6_fill_node+0x1460/0x1ac0\nRead of size 4 at addr ffff88809a07fc64 by task syz-executor.2/23037\n\nCPU: 0 PID: 23037 Comm: syz-executor.2 Not tainted 6.8.0-rc4-syzkaller-01035-gea7f3cfaa588 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\nCall Trace:\n \u003cTASK\u003e\n  __dump_stack lib/dump_stack.c:88 [inline]\n  dump_stack_lvl+0x1e7/0x2e0 lib/dump_stack.c:106\n  print_address_description mm/kasan/report.c:377 [inline]\n  print_report+0x167/0x540 mm/kasan/report.c:488\n  kasan_report+0x142/0x180 mm/kasan/report.c:601\n rt6_fill_node+0x1460/0x1ac0\n  inet6_rt_notify+0x13b/0x290 net/ipv6/route.c:6184\n  ip6_route_mpath_notify net/ipv6/route.c:5198 [inline]\n  ip6_route_multipath_add net/ipv6/route.c:5404 [inline]\n  inet6_rtm_newroute+0x1d0f/0x2300 net/ipv6/route.c:5517\n  rtnetlink_rcv_msg+0x885/0x1040 net/core/rtnetlink.c:6597\n  netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2543\n  netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]\n  netlink_unicast+0x7ea/0x980 net/netlink/af_netlink.c:1367\n  netlink_sendmsg+0xa3b/0xd70 net/netlink/af_netlink.c:1908\n  sock_sendmsg_nosec net/socket.c:730 [inline]\n  __sock_sendmsg+0x221/0x270 net/socket.c:745\n  ____sys_sendmsg+0x525/0x7d0 net/socket.c:2584\n  ___sys_sendmsg net/socket.c:2638 [inline]\n  __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2667\n do_syscall_64+0xf9/0x240\n entry_SYSCALL_64_after_hwframe+0x6f/0x77\nRIP: 0033:0x7f73dd87dda9\nCode: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 \u003c48\u003e 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48\nRSP: 002b:00007f73de6550c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e\nRAX: ffffffffffffffda RBX: 00007f73dd9ac050 RCX: 00007f73dd87dda9\nRDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000005\nRBP: 00007f73dd8ca47a R08: 0000000000000000 R09: 0000000000000000\nR10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\nR13: 000000000000006e R14: 00007f73dd9ac050 R15: 00007ffdbdeb7858\n \u003c/TASK\u003e\n\nAllocated by task 23037:\n  kasan_save_stack mm/kasan/common.c:47 [inline]\n  kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n  poison_kmalloc_redzone mm/kasan/common.c:372 [inline]\n  __kasan_kmalloc+0x98/0xb0 mm/kasan/common.c:389\n  kasan_kmalloc include/linux/kasan.h:211 [inline]\n  __do_kmalloc_node mm/slub.c:3981 [inline]\n  __kmalloc+0x22e/0x490 mm/slub.c:3994\n  kmalloc include/linux/slab.h:594 [inline]\n  kzalloc include/linux/slab.h:711 [inline]\n  fib6_info_alloc+0x2e/0xf0 net/ipv6/ip6_fib.c:155\n  ip6_route_info_create+0x445/0x12b0 net/ipv6/route.c:3758\n  ip6_route_multipath_add net/ipv6/route.c:5298 [inline]\n  inet6_rtm_newroute+0x744/0x2300 net/ipv6/route.c:5517\n  rtnetlink_rcv_msg+0x885/0x1040 net/core/rtnetlink.c:6597\n  netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2543\n  netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]\n  netlink_unicast+0x7ea/0x980 net/netlink/af_netlink.c:1367\n  netlink_sendmsg+0xa3b/0xd70 net/netlink/af_netlink.c:1908\n  sock_sendmsg_nosec net/socket.c:730 [inline]\n  __sock_sendmsg+0x221/0x270 net/socket.c:745\n  ____sys_sendmsg+0x525/0x7d0 net/socket.c:2584\n  ___sys_sendmsg net/socket.c:2638 [inline]\n  __sys_sendmsg+0x2b0/0x3a0 net/socket.c:2667\n do_syscall_64+0xf9/0x240\n entry_SYSCALL_64_after_hwframe+0x6f/0x77\n\nFreed by task 16:\n  kasan_save_stack mm/kasan/common.c:47 [inline]\n  kasan_save_track+0x3f/0x80 mm/kasan/common.c:68\n  kasan_save_free_info+0x4e/0x60 mm/kasan/generic.c:640\n  poison_slab_object+0xa6/0xe0 m\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:58.505Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/31ea5bcc7d4cd1423de6be327a2c034725704136"
        },
        {
          "url": "https://git.kernel.org/stable/c/664f9c647260cc9d68b4e31d9899530d89dd045e"
        },
        {
          "url": "https://git.kernel.org/stable/c/79ce2e54cc0ae366f45516c00bf1b19aa43e9abe"
        },
        {
          "url": "https://git.kernel.org/stable/c/cae3303257950d03ffec2df4a45e836f10d26c24"
        },
        {
          "url": "https://git.kernel.org/stable/c/394334fe2ae3b9f1e2332b873857e84cb28aac18"
        },
        {
          "url": "https://git.kernel.org/stable/c/ed883060c38721ed828061f6c0c30e5147326c9a"
        },
        {
          "url": "https://git.kernel.org/stable/c/61b34f73cdbdb8eaf9ea12e9e2eb3b29716c4dda"
        },
        {
          "url": "https://git.kernel.org/stable/c/685f7d531264599b3f167f1e94bbd22f120e5fab"
        }
      ],
      "title": "net/ipv6: avoid possible UAF in ip6_route_mpath_notify()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26852",
    "datePublished": "2024-04-17T10:17:15.923Z",
    "dateReserved": "2024-02-19T14:20:24.183Z",
    "dateUpdated": "2025-05-04T08:57:58.505Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48672 (GCVE-0-2022-48672)

Vulnerability from cvelistv5

Published

2024-05-03 14:51

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: of: fdt: fix off-by-one error in unflatten_dt_nodes() Commit 78c44d910d3e ("drivers/of: Fix depth when unflattening devicetree") forgot to fix up the depth check in the loop body in unflatten_dt_nodes() which makes it possible to overflow the nps[] buffer... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.

References

►

URL

Tags

	https://git.kernel.org/stable/c/cbdda20ce363356698835185801a58a28f644853
	https://git.kernel.org/stable/c/2566706ac6393386a4e7c4ce23fe17f4c98d9aa0
	https://git.kernel.org/stable/c/e0e88c25f88b9805572263c9ed20f1d88742feaf
	https://git.kernel.org/stable/c/ee4369260e77821602102dcc7d792de39a56365c
	https://git.kernel.org/stable/c/ba6b9f7cc1108bad6e2c53b1d6e0156379188db7
	https://git.kernel.org/stable/c/2133f451311671c7c42b5640d2b999326b39aa0e
	https://git.kernel.org/stable/c/2f945a792f67815abca26fa8a5e863ccf3fa1181

Impacted products

Vendor

Product

Version

►

Linux

Version: 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455
Version: 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455
Version: 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455
Version: 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455
Version: 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455
Version: 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455
Version: 78c44d910d3e5f96dc6b3695fc1e4efd7c46a455

Linux

Version: 4.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48672",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T15:31:42.544378Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-12T15:31:56.172Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.720Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cbdda20ce363356698835185801a58a28f644853"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2566706ac6393386a4e7c4ce23fe17f4c98d9aa0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e0e88c25f88b9805572263c9ed20f1d88742feaf"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ee4369260e77821602102dcc7d792de39a56365c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ba6b9f7cc1108bad6e2c53b1d6e0156379188db7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2133f451311671c7c42b5640d2b999326b39aa0e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2f945a792f67815abca26fa8a5e863ccf3fa1181"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/of/fdt.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "cbdda20ce363356698835185801a58a28f644853",
              "status": "affected",
              "version": "78c44d910d3e5f96dc6b3695fc1e4efd7c46a455",
              "versionType": "git"
            },
            {
              "lessThan": "2566706ac6393386a4e7c4ce23fe17f4c98d9aa0",
              "status": "affected",
              "version": "78c44d910d3e5f96dc6b3695fc1e4efd7c46a455",
              "versionType": "git"
            },
            {
              "lessThan": "e0e88c25f88b9805572263c9ed20f1d88742feaf",
              "status": "affected",
              "version": "78c44d910d3e5f96dc6b3695fc1e4efd7c46a455",
              "versionType": "git"
            },
            {
              "lessThan": "ee4369260e77821602102dcc7d792de39a56365c",
              "status": "affected",
              "version": "78c44d910d3e5f96dc6b3695fc1e4efd7c46a455",
              "versionType": "git"
            },
            {
              "lessThan": "ba6b9f7cc1108bad6e2c53b1d6e0156379188db7",
              "status": "affected",
              "version": "78c44d910d3e5f96dc6b3695fc1e4efd7c46a455",
              "versionType": "git"
            },
            {
              "lessThan": "2133f451311671c7c42b5640d2b999326b39aa0e",
              "status": "affected",
              "version": "78c44d910d3e5f96dc6b3695fc1e4efd7c46a455",
              "versionType": "git"
            },
            {
              "lessThan": "2f945a792f67815abca26fa8a5e863ccf3fa1181",
              "status": "affected",
              "version": "78c44d910d3e5f96dc6b3695fc1e4efd7c46a455",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/of/fdt.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.7"
            },
            {
              "lessThan": "4.7",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.295",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.260",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.145",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.70",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.295",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.260",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.145",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.70",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.11",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nof: fdt: fix off-by-one error in unflatten_dt_nodes()\n\nCommit 78c44d910d3e (\"drivers/of: Fix depth when unflattening devicetree\")\nforgot to fix up the depth check in the loop body in unflatten_dt_nodes()\nwhich makes it possible to overflow the nps[] buffer...\n\nFound by Linux Verification Center (linuxtesting.org) with the SVACE static\nanalysis tool."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:59.223Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/cbdda20ce363356698835185801a58a28f644853"
        },
        {
          "url": "https://git.kernel.org/stable/c/2566706ac6393386a4e7c4ce23fe17f4c98d9aa0"
        },
        {
          "url": "https://git.kernel.org/stable/c/e0e88c25f88b9805572263c9ed20f1d88742feaf"
        },
        {
          "url": "https://git.kernel.org/stable/c/ee4369260e77821602102dcc7d792de39a56365c"
        },
        {
          "url": "https://git.kernel.org/stable/c/ba6b9f7cc1108bad6e2c53b1d6e0156379188db7"
        },
        {
          "url": "https://git.kernel.org/stable/c/2133f451311671c7c42b5640d2b999326b39aa0e"
        },
        {
          "url": "https://git.kernel.org/stable/c/2f945a792f67815abca26fa8a5e863ccf3fa1181"
        }
      ],
      "title": "of: fdt: fix off-by-one error in unflatten_dt_nodes()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48672",
    "datePublished": "2024-05-03T14:51:18.085Z",
    "dateReserved": "2024-02-25T13:44:28.321Z",
    "dateUpdated": "2025-05-04T08:20:59.223Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47207 (GCVE-0-2021-47207)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ALSA: gus: fix null pointer dereference on pointer block The pointer block return from snd_gf1_dma_next_block could be null, so there is a potential null pointer dereference issue. Fix this by adding a null check before dereference.

References

►

URL

Tags

	https://git.kernel.org/stable/c/3e28e083dcdf03a18a083f8a47b6bb6b1604b5be
	https://git.kernel.org/stable/c/cb09c760c201f82df83babc92a5ffea0a01807fc
	https://git.kernel.org/stable/c/542fa721594a02d2aee0370a764d306ef48d030c
	https://git.kernel.org/stable/c/ab4c1ebc40f699f48346f634d7b72b9c5193f315
	https://git.kernel.org/stable/c/c6d2cefdd05c4810c416fb8d384b5c377bd977bc
	https://git.kernel.org/stable/c/1ac6cd87d8ddd36c43620f82c4d65b058f725f0f
	https://git.kernel.org/stable/c/16721797dcef2c7c030ffe73a07f39a65f9323c3
	https://git.kernel.org/stable/c/a0d21bb3279476c777434c40d969ea88ca64f9aa

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47207",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T18:03:51.697806Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T18:04:50.591Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.300Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3e28e083dcdf03a18a083f8a47b6bb6b1604b5be"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cb09c760c201f82df83babc92a5ffea0a01807fc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/542fa721594a02d2aee0370a764d306ef48d030c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ab4c1ebc40f699f48346f634d7b72b9c5193f315"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c6d2cefdd05c4810c416fb8d384b5c377bd977bc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1ac6cd87d8ddd36c43620f82c4d65b058f725f0f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/16721797dcef2c7c030ffe73a07f39a65f9323c3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a0d21bb3279476c777434c40d969ea88ca64f9aa"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "sound/isa/gus/gus_dma.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "3e28e083dcdf03a18a083f8a47b6bb6b1604b5be",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "cb09c760c201f82df83babc92a5ffea0a01807fc",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "542fa721594a02d2aee0370a764d306ef48d030c",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ab4c1ebc40f699f48346f634d7b72b9c5193f315",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "c6d2cefdd05c4810c416fb8d384b5c377bd977bc",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "1ac6cd87d8ddd36c43620f82c4d65b058f725f0f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "16721797dcef2c7c030ffe73a07f39a65f9323c3",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "a0d21bb3279476c777434c40d969ea88ca64f9aa",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "sound/isa/gus/gus_dma.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.4.*",
              "status": "unaffected",
              "version": "4.4.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.291",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.256",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.4.293",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.291",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.256",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: gus: fix null pointer dereference on pointer block\n\nThe pointer block return from snd_gf1_dma_next_block could be\nnull, so there is a potential null pointer dereference issue.\nFix this by adding a null check before dereference."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:24.143Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/3e28e083dcdf03a18a083f8a47b6bb6b1604b5be"
        },
        {
          "url": "https://git.kernel.org/stable/c/cb09c760c201f82df83babc92a5ffea0a01807fc"
        },
        {
          "url": "https://git.kernel.org/stable/c/542fa721594a02d2aee0370a764d306ef48d030c"
        },
        {
          "url": "https://git.kernel.org/stable/c/ab4c1ebc40f699f48346f634d7b72b9c5193f315"
        },
        {
          "url": "https://git.kernel.org/stable/c/c6d2cefdd05c4810c416fb8d384b5c377bd977bc"
        },
        {
          "url": "https://git.kernel.org/stable/c/1ac6cd87d8ddd36c43620f82c4d65b058f725f0f"
        },
        {
          "url": "https://git.kernel.org/stable/c/16721797dcef2c7c030ffe73a07f39a65f9323c3"
        },
        {
          "url": "https://git.kernel.org/stable/c/a0d21bb3279476c777434c40d969ea88ca64f9aa"
        }
      ],
      "title": "ALSA: gus: fix null pointer dereference on pointer block",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47207",
    "datePublished": "2024-04-10T18:56:39.655Z",
    "dateReserved": "2024-03-25T09:12:14.118Z",
    "dateUpdated": "2025-05-04T07:06:24.143Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47188 (GCVE-0-2021-47188)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Improve SCSI abort handling The following has been observed on a test setup: WARNING: CPU: 4 PID: 250 at drivers/scsi/ufs/ufshcd.c:2737 ufshcd_queuecommand+0x468/0x65c Call trace: ufshcd_queuecommand+0x468/0x65c scsi_send_eh_cmnd+0x224/0x6a0 scsi_eh_test_devices+0x248/0x418 scsi_eh_ready_devs+0xc34/0xe58 scsi_error_handler+0x204/0x80c kthread+0x150/0x1b4 ret_from_fork+0x10/0x30 That warning is triggered by the following statement: WARN_ON(lrbp->cmd); Fix this warning by clearing lrbp->cmd from the abort handler.

References

►

URL

Tags

	https://git.kernel.org/stable/c/c36baca06efa833adaefba61f45fefdc49b6d070
	https://git.kernel.org/stable/c/3ff1f6b6ba6f97f50862aa50e79959cc8ddc2566

Impacted products

Vendor

Product

Version

►

Linux

Version: 7a3e97b0dc4bbac2ba7803564ab0057722689921
Version: 7a3e97b0dc4bbac2ba7803564ab0057722689921

Linux

Version: 3.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.411Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c36baca06efa833adaefba61f45fefdc49b6d070"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3ff1f6b6ba6f97f50862aa50e79959cc8ddc2566"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47188",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:50:11.298126Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:39.156Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/ufs/ufshcd.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "c36baca06efa833adaefba61f45fefdc49b6d070",
              "status": "affected",
              "version": "7a3e97b0dc4bbac2ba7803564ab0057722689921",
              "versionType": "git"
            },
            {
              "lessThan": "3ff1f6b6ba6f97f50862aa50e79959cc8ddc2566",
              "status": "affected",
              "version": "7a3e97b0dc4bbac2ba7803564ab0057722689921",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/ufs/ufshcd.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.4"
            },
            {
              "lessThan": "3.4",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "3.4",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: ufs: core: Improve SCSI abort handling\n\nThe following has been observed on a test setup:\n\nWARNING: CPU: 4 PID: 250 at drivers/scsi/ufs/ufshcd.c:2737 ufshcd_queuecommand+0x468/0x65c\nCall trace:\n ufshcd_queuecommand+0x468/0x65c\n scsi_send_eh_cmnd+0x224/0x6a0\n scsi_eh_test_devices+0x248/0x418\n scsi_eh_ready_devs+0xc34/0xe58\n scsi_error_handler+0x204/0x80c\n kthread+0x150/0x1b4\n ret_from_fork+0x10/0x30\n\nThat warning is triggered by the following statement:\n\n\tWARN_ON(lrbp-\u003ecmd);\n\nFix this warning by clearing lrbp-\u003ecmd from the abort handler."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:00.229Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/c36baca06efa833adaefba61f45fefdc49b6d070"
        },
        {
          "url": "https://git.kernel.org/stable/c/3ff1f6b6ba6f97f50862aa50e79959cc8ddc2566"
        }
      ],
      "title": "scsi: ufs: core: Improve SCSI abort handling",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47188",
    "datePublished": "2024-04-10T18:56:27.567Z",
    "dateReserved": "2024-03-25T09:12:14.113Z",
    "dateUpdated": "2025-05-04T07:06:00.229Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-23307 (GCVE-0-2024-23307)

Vulnerability from cvelistv5

Published

2024-01-25 06:59

Modified

2025-06-17 21:19

Severity ?

4.4 (Medium) - CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-190 - Integer Overflow or Wraparound

Summary

Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow.

References

►

URL

Tags

https://bugzilla.openanolis.cn/show_bug.cgi?id=7975

Impacted products

	Vendor	Product	Version
	Linux	Linux kernel	Version: v4.1-rc1 < v6.8-rc1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:59:32.237Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.openanolis.cn/show_bug.cgi?id=7975"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-23307",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-01-25T20:01:15.650200Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-17T21:19:30.512Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://mirrors.openanolis.cn/anolis/",
          "defaultStatus": "unaffected",
          "modules": [
            "md",
            "raid",
            "raid5"
          ],
          "packageName": "kernel",
          "platforms": [
            "Linux",
            "x86",
            "ARM"
          ],
          "product": "Linux kernel",
          "programFiles": [
            "https://gitee.com/anolis/cloud-kernel/blob/devel-4.19/drivers/md/raid5.c"
          ],
          "repo": "https://gitee.com/anolis/cloud-kernel.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "v6.8-rc1",
              "status": "affected",
              "version": "v4.1-rc1",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Gui-Dong Han \u003c2045gemini@gmail.com\u003e"
        }
      ],
      "datePublic": "2024-01-19T02:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow."
            }
          ],
          "value": "Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-92",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-92 Forced Integer Overflow"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-190",
              "description": "CWE-190 Integer Overflow or Wraparound",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-01-25T06:59:37.190Z",
        "orgId": "cb8f1db9-b4b1-487b-a760-f65c4f368d8e",
        "shortName": "Anolis"
      },
      "references": [
        {
          "url": "https://bugzilla.openanolis.cn/show_bug.cgi?id=7975"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://patchwork.kernel.org/project/linux-raid/patch/20240112071017.16313-1-2045gemini@gmail.com/\"\u003ehttps://patchwork.kernel.org/project/linux-raid/patch/20240112071017.16313-1-2045gemini@gmail.com/\u003c/a\u003e"
            }
          ],
          "value": " https://patchwork.kernel.org/project/linux-raid/patch/20240112071017.16313-1-2045gemini@gmail.com/ https://patchwork.kernel.org/project/linux-raid/patch/20240112071017.16313-1-2045gemini@gmail.com/ "
        }
      ],
      "source": {
        "discovery": "INTERNAL"
      },
      "title": "Integer overflow in raid5_cache_count in Linux kernel",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cb8f1db9-b4b1-487b-a760-f65c4f368d8e",
    "assignerShortName": "Anolis",
    "cveId": "CVE-2024-23307",
    "datePublished": "2024-01-25T06:59:37.190Z",
    "dateReserved": "2024-01-15T09:44:45.516Z",
    "dateUpdated": "2025-06-17T21:19:30.512Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26883 (GCVE-0-2024-26883)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 12:55

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check on 32-bit arches The stackmap code relies on roundup_pow_of_two() to compute the number of hash buckets, and contains an overflow check by checking if the resulting value is 0. However, on 32-bit arches, the roundup code itself can overflow by doing a 32-bit left-shift of an unsigned long value, which is undefined behaviour, so it is not guaranteed to truncate neatly. This was triggered by syzbot on the DEVMAP_HASH type, which contains the same check, copied from the hashtab code. The commit in the fixes tag actually attempted to fix this, but the fix did not account for the UB, so the fix only works on CPUs where an overflow does result in a neat truncation to zero, which is not guaranteed. Checking the value before rounding does not have this problem.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d0e214acc59145ce25113f617311aa79dda39cb3
	https://git.kernel.org/stable/c/21e5fa4688e1a4d3db6b72216231b24232f75c1d
	https://git.kernel.org/stable/c/15641007df0f0d35fa28742b25c2a7db9dcd6895
	https://git.kernel.org/stable/c/ca1f06e72dec41ae4f76e7b1a8a97265447b46ae
	https://git.kernel.org/stable/c/f06899582ccee09bd85d0696290e3eaca9aa042d
	https://git.kernel.org/stable/c/7070b274c7866a4c5036f8d54fcaf315c64ac33a
	https://git.kernel.org/stable/c/43f798b9036491fb014b55dd61c4c5c3193267d0
	https://git.kernel.org/stable/c/0971126c8164abe2004b8536b49690a0d6005b0a
	https://git.kernel.org/stable/c/7a4b21250bf79eef26543d35bd390448646c536b

Impacted products

Vendor

Product

Version

►

Linux

Version: 063c722dd9d285d877e6fd499e753d6224f4c046
Version: 7e3a6b820535eb395784060ae26c5af579528fa0
Version: 8032bf2af9ce26b3a362b9711d15f626ab946a74
Version: 6183f4d3a0a2ad230511987c6c362ca43ec0055f
Version: 6183f4d3a0a2ad230511987c6c362ca43ec0055f
Version: 6183f4d3a0a2ad230511987c6c362ca43ec0055f
Version: 6183f4d3a0a2ad230511987c6c362ca43ec0055f
Version: 6183f4d3a0a2ad230511987c6c362ca43ec0055f
Version: 6183f4d3a0a2ad230511987c6c362ca43ec0055f
Version: 253150830a012adfccf90afcebae8fda5b05a80f
Version: 766107351731ae223ebf60ca22bdfeb47ce6acc8

Linux

Version: 5.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.381Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d0e214acc59145ce25113f617311aa79dda39cb3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/21e5fa4688e1a4d3db6b72216231b24232f75c1d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/15641007df0f0d35fa28742b25c2a7db9dcd6895"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ca1f06e72dec41ae4f76e7b1a8a97265447b46ae"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f06899582ccee09bd85d0696290e3eaca9aa042d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7070b274c7866a4c5036f8d54fcaf315c64ac33a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/43f798b9036491fb014b55dd61c4c5c3193267d0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0971126c8164abe2004b8536b49690a0d6005b0a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7a4b21250bf79eef26543d35bd390448646c536b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26883",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:48:22.381696Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:25.228Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/bpf/stackmap.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d0e214acc59145ce25113f617311aa79dda39cb3",
              "status": "affected",
              "version": "063c722dd9d285d877e6fd499e753d6224f4c046",
              "versionType": "git"
            },
            {
              "lessThan": "21e5fa4688e1a4d3db6b72216231b24232f75c1d",
              "status": "affected",
              "version": "7e3a6b820535eb395784060ae26c5af579528fa0",
              "versionType": "git"
            },
            {
              "lessThan": "15641007df0f0d35fa28742b25c2a7db9dcd6895",
              "status": "affected",
              "version": "8032bf2af9ce26b3a362b9711d15f626ab946a74",
              "versionType": "git"
            },
            {
              "lessThan": "ca1f06e72dec41ae4f76e7b1a8a97265447b46ae",
              "status": "affected",
              "version": "6183f4d3a0a2ad230511987c6c362ca43ec0055f",
              "versionType": "git"
            },
            {
              "lessThan": "f06899582ccee09bd85d0696290e3eaca9aa042d",
              "status": "affected",
              "version": "6183f4d3a0a2ad230511987c6c362ca43ec0055f",
              "versionType": "git"
            },
            {
              "lessThan": "7070b274c7866a4c5036f8d54fcaf315c64ac33a",
              "status": "affected",
              "version": "6183f4d3a0a2ad230511987c6c362ca43ec0055f",
              "versionType": "git"
            },
            {
              "lessThan": "43f798b9036491fb014b55dd61c4c5c3193267d0",
              "status": "affected",
              "version": "6183f4d3a0a2ad230511987c6c362ca43ec0055f",
              "versionType": "git"
            },
            {
              "lessThan": "0971126c8164abe2004b8536b49690a0d6005b0a",
              "status": "affected",
              "version": "6183f4d3a0a2ad230511987c6c362ca43ec0055f",
              "versionType": "git"
            },
            {
              "lessThan": "7a4b21250bf79eef26543d35bd390448646c536b",
              "status": "affected",
              "version": "6183f4d3a0a2ad230511987c6c362ca43ec0055f",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "253150830a012adfccf90afcebae8fda5b05a80f",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "766107351731ae223ebf60ca22bdfeb47ce6acc8",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/bpf/stackmap.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.11"
            },
            {
              "lessThan": "5.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "versionStartIncluding": "4.19.177",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "5.4.99",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "5.10.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.9.258",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "4.14.222",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix stackmap overflow check on 32-bit arches\n\nThe stackmap code relies on roundup_pow_of_two() to compute the number\nof hash buckets, and contains an overflow check by checking if the\nresulting value is 0. However, on 32-bit arches, the roundup code itself\ncan overflow by doing a 32-bit left-shift of an unsigned long value,\nwhich is undefined behaviour, so it is not guaranteed to truncate\nneatly. This was triggered by syzbot on the DEVMAP_HASH type, which\ncontains the same check, copied from the hashtab code.\n\nThe commit in the fixes tag actually attempted to fix this, but the fix\ndid not account for the UB, so the fix only works on CPUs where an\noverflow does result in a neat truncation to zero, which is not\nguaranteed. Checking the value before rounding does not have this\nproblem."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:55:01.991Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d0e214acc59145ce25113f617311aa79dda39cb3"
        },
        {
          "url": "https://git.kernel.org/stable/c/21e5fa4688e1a4d3db6b72216231b24232f75c1d"
        },
        {
          "url": "https://git.kernel.org/stable/c/15641007df0f0d35fa28742b25c2a7db9dcd6895"
        },
        {
          "url": "https://git.kernel.org/stable/c/ca1f06e72dec41ae4f76e7b1a8a97265447b46ae"
        },
        {
          "url": "https://git.kernel.org/stable/c/f06899582ccee09bd85d0696290e3eaca9aa042d"
        },
        {
          "url": "https://git.kernel.org/stable/c/7070b274c7866a4c5036f8d54fcaf315c64ac33a"
        },
        {
          "url": "https://git.kernel.org/stable/c/43f798b9036491fb014b55dd61c4c5c3193267d0"
        },
        {
          "url": "https://git.kernel.org/stable/c/0971126c8164abe2004b8536b49690a0d6005b0a"
        },
        {
          "url": "https://git.kernel.org/stable/c/7a4b21250bf79eef26543d35bd390448646c536b"
        }
      ],
      "title": "bpf: Fix stackmap overflow check on 32-bit arches",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26883",
    "datePublished": "2024-04-17T10:27:39.036Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T12:55:01.991Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47193 (GCVE-0-2021-47193)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix memory leak during rmmod Driver failed to release all memory allocated. This would lead to memory leak during driver removal. Properly free memory when the module is removed.

References

►

URL

Tags

	https://git.kernel.org/stable/c/269a4311b15f68d24e816f43f123888f241ed13d
	https://git.kernel.org/stable/c/51e6ed83bb4ade7c360551fa4ae55c4eacea354b

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47193",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-12T16:35:04.772224Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:14:16.616Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.232Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/269a4311b15f68d24e816f43f123888f241ed13d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/51e6ed83bb4ade7c360551fa4ae55c4eacea354b"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/pm8001/pm8001_init.c",
            "drivers/scsi/pm8001/pm8001_sas.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "269a4311b15f68d24e816f43f123888f241ed13d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "51e6ed83bb4ade7c360551fa4ae55c4eacea354b",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/pm8001/pm8001_init.c",
            "drivers/scsi/pm8001/pm8001_sas.h"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: pm80xx: Fix memory leak during rmmod\n\nDriver failed to release all memory allocated. This would lead to memory\nleak during driver removal.\n\nProperly free memory when the module is removed."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:07.567Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/269a4311b15f68d24e816f43f123888f241ed13d"
        },
        {
          "url": "https://git.kernel.org/stable/c/51e6ed83bb4ade7c360551fa4ae55c4eacea354b"
        }
      ],
      "title": "scsi: pm80xx: Fix memory leak during rmmod",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47193",
    "datePublished": "2024-04-10T18:56:30.726Z",
    "dateReserved": "2024-03-25T09:12:14.113Z",
    "dateUpdated": "2025-05-04T07:06:07.567Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47047 (GCVE-0-2021-47047)

Vulnerability from cvelistv5

Published

2024-02-28 08:13

Modified

2025-05-04 07:03

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: spi: spi-zynqmp-gqspi: return -ENOMEM if dma_map_single fails The spi controller supports 44-bit address space on AXI in DMA mode, so set dma_addr_t width to 44-bit to avoid using a swiotlb mapping. In addition, if dma_map_single fails, it should return immediately instead of continuing doing the DMA operation which bases on invalid address. This fixes the following crash which occurs in reading a big block from flash: [ 123.633577] zynqmp-qspi ff0f0000.spi: swiotlb buffer is full (sz: 4194304 bytes), total 32768 (slots), used 0 (slots) [ 123.644230] zynqmp-qspi ff0f0000.spi: ERR:rxdma:memory not mapped [ 123.784625] Unable to handle kernel paging request at virtual address 00000000003fffc0 [ 123.792536] Mem abort info: [ 123.795313] ESR = 0x96000145 [ 123.798351] EC = 0x25: DABT (current EL), IL = 32 bits [ 123.803655] SET = 0, FnV = 0 [ 123.806693] EA = 0, S1PTW = 0 [ 123.809818] Data abort info: [ 123.812683] ISV = 0, ISS = 0x00000145 [ 123.816503] CM = 1, WnR = 1 [ 123.819455] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000805047000 [ 123.825887] [00000000003fffc0] pgd=0000000803b45003, p4d=0000000803b45003, pud=0000000000000000 [ 123.834586] Internal error: Oops: 96000145 [#1] PREEMPT SMP

References

►

URL

Tags

	https://git.kernel.org/stable/c/5980a3b9c933408bc22b0e349b78c3ebd7cbf880
	https://git.kernel.org/stable/c/c26c026eb496261dbc0adbf606cc81989cd2038c
	https://git.kernel.org/stable/c/bad5a23cf2b477fa78b85fd392736dae09a1e818
	https://git.kernel.org/stable/c/126bdb606fd2802454e6048caef1be3e25dd121e

Impacted products

Vendor

Product

Version

►

Linux

Version: 1c26372e5aa9e53391a1f8fe0dc7cd93a7e5ba9e
Version: 1c26372e5aa9e53391a1f8fe0dc7cd93a7e5ba9e
Version: 1c26372e5aa9e53391a1f8fe0dc7cd93a7e5ba9e
Version: 1c26372e5aa9e53391a1f8fe0dc7cd93a7e5ba9e

Linux

Version: 5.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47047",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-02-28T19:57:19.610244Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:15:11.460Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:24:39.320Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5980a3b9c933408bc22b0e349b78c3ebd7cbf880"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c26c026eb496261dbc0adbf606cc81989cd2038c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bad5a23cf2b477fa78b85fd392736dae09a1e818"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/126bdb606fd2802454e6048caef1be3e25dd121e"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/spi/spi-zynqmp-gqspi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "5980a3b9c933408bc22b0e349b78c3ebd7cbf880",
              "status": "affected",
              "version": "1c26372e5aa9e53391a1f8fe0dc7cd93a7e5ba9e",
              "versionType": "git"
            },
            {
              "lessThan": "c26c026eb496261dbc0adbf606cc81989cd2038c",
              "status": "affected",
              "version": "1c26372e5aa9e53391a1f8fe0dc7cd93a7e5ba9e",
              "versionType": "git"
            },
            {
              "lessThan": "bad5a23cf2b477fa78b85fd392736dae09a1e818",
              "status": "affected",
              "version": "1c26372e5aa9e53391a1f8fe0dc7cd93a7e5ba9e",
              "versionType": "git"
            },
            {
              "lessThan": "126bdb606fd2802454e6048caef1be3e25dd121e",
              "status": "affected",
              "version": "1c26372e5aa9e53391a1f8fe0dc7cd93a7e5ba9e",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/spi/spi-zynqmp-gqspi.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.37",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.11.*",
              "status": "unaffected",
              "version": "5.11.21",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.12.*",
              "status": "unaffected",
              "version": "5.12.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.13",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.37",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.11.21",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.12.4",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.13",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: spi-zynqmp-gqspi: return -ENOMEM if dma_map_single fails\n\nThe spi controller supports 44-bit address space on AXI in DMA mode,\nso set dma_addr_t width to 44-bit to avoid using a swiotlb mapping.\nIn addition, if dma_map_single fails, it should return immediately\ninstead of continuing doing the DMA operation which bases on invalid\naddress.\n\nThis fixes the following crash which occurs in reading a big block\nfrom flash:\n\n[  123.633577] zynqmp-qspi ff0f0000.spi: swiotlb buffer is full (sz: 4194304 bytes), total 32768 (slots), used 0 (slots)\n[  123.644230] zynqmp-qspi ff0f0000.spi: ERR:rxdma:memory not mapped\n[  123.784625] Unable to handle kernel paging request at virtual address 00000000003fffc0\n[  123.792536] Mem abort info:\n[  123.795313]   ESR = 0x96000145\n[  123.798351]   EC = 0x25: DABT (current EL), IL = 32 bits\n[  123.803655]   SET = 0, FnV = 0\n[  123.806693]   EA = 0, S1PTW = 0\n[  123.809818] Data abort info:\n[  123.812683]   ISV = 0, ISS = 0x00000145\n[  123.816503]   CM = 1, WnR = 1\n[  123.819455] user pgtable: 4k pages, 48-bit VAs, pgdp=0000000805047000\n[  123.825887] [00000000003fffc0] pgd=0000000803b45003, p4d=0000000803b45003, pud=0000000000000000\n[  123.834586] Internal error: Oops: 96000145 [#1] PREEMPT SMP"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:03:02.855Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/5980a3b9c933408bc22b0e349b78c3ebd7cbf880"
        },
        {
          "url": "https://git.kernel.org/stable/c/c26c026eb496261dbc0adbf606cc81989cd2038c"
        },
        {
          "url": "https://git.kernel.org/stable/c/bad5a23cf2b477fa78b85fd392736dae09a1e818"
        },
        {
          "url": "https://git.kernel.org/stable/c/126bdb606fd2802454e6048caef1be3e25dd121e"
        }
      ],
      "title": "spi: spi-zynqmp-gqspi: return -ENOMEM if dma_map_single fails",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47047",
    "datePublished": "2024-02-28T08:13:50.931Z",
    "dateReserved": "2024-02-27T18:42:55.970Z",
    "dateUpdated": "2025-05-04T07:03:02.855Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48632 (GCVE-0-2022-48632)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: i2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction() memcpy() is called in a loop while 'operation->length' upper bound is not checked and 'data_idx' also increments.

References

►

URL

Tags

	https://git.kernel.org/stable/c/48ee0a864d1af02eea98fc825cc230d61517a71e
	https://git.kernel.org/stable/c/dc2a0c587006f29b724069740c48654b9dcaebd2
	https://git.kernel.org/stable/c/3b5ab5fbe69ebbee5692c72b05071a43fc0655d8
	https://git.kernel.org/stable/c/de24aceb07d426b6f1c59f33889d6a964770547b

Impacted products

Vendor

Product

Version

►

Linux

Version: b5b5b32081cd206baa6e58cca7f112d9723785d6
Version: b5b5b32081cd206baa6e58cca7f112d9723785d6
Version: b5b5b32081cd206baa6e58cca7f112d9723785d6
Version: b5b5b32081cd206baa6e58cca7f112d9723785d6

Linux

Version: 5.10

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.519Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/48ee0a864d1af02eea98fc825cc230d61517a71e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dc2a0c587006f29b724069740c48654b9dcaebd2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3b5ab5fbe69ebbee5692c72b05071a43fc0655d8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/de24aceb07d426b6f1c59f33889d6a964770547b"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48632",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:46:27.328258Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:12.457Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/i2c/busses/i2c-mlxbf.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "48ee0a864d1af02eea98fc825cc230d61517a71e",
              "status": "affected",
              "version": "b5b5b32081cd206baa6e58cca7f112d9723785d6",
              "versionType": "git"
            },
            {
              "lessThan": "dc2a0c587006f29b724069740c48654b9dcaebd2",
              "status": "affected",
              "version": "b5b5b32081cd206baa6e58cca7f112d9723785d6",
              "versionType": "git"
            },
            {
              "lessThan": "3b5ab5fbe69ebbee5692c72b05071a43fc0655d8",
              "status": "affected",
              "version": "b5b5b32081cd206baa6e58cca7f112d9723785d6",
              "versionType": "git"
            },
            {
              "lessThan": "de24aceb07d426b6f1c59f33889d6a964770547b",
              "status": "affected",
              "version": "b5b5b32081cd206baa6e58cca7f112d9723785d6",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/i2c/busses/i2c-mlxbf.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.10"
            },
            {
              "lessThan": "5.10",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ni2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction()\n\nmemcpy() is called in a loop while \u0027operation-\u003elength\u0027 upper bound\nis not checked and \u0027data_idx\u0027 also increments."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:08.103Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/48ee0a864d1af02eea98fc825cc230d61517a71e"
        },
        {
          "url": "https://git.kernel.org/stable/c/dc2a0c587006f29b724069740c48654b9dcaebd2"
        },
        {
          "url": "https://git.kernel.org/stable/c/3b5ab5fbe69ebbee5692c72b05071a43fc0655d8"
        },
        {
          "url": "https://git.kernel.org/stable/c/de24aceb07d426b6f1c59f33889d6a964770547b"
        }
      ],
      "title": "i2c: mlxbf: prevent stack overflow in mlxbf_i2c_smbus_start_transaction()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48632",
    "datePublished": "2024-04-28T12:59:10.481Z",
    "dateReserved": "2024-02-25T13:44:28.315Z",
    "dateUpdated": "2025-05-04T08:20:08.103Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26884 (GCVE-0-2024-26884)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:58

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix hashtab overflow check on 32-bit arches The hashtab code relies on roundup_pow_of_two() to compute the number of hash buckets, and contains an overflow check by checking if the resulting value is 0. However, on 32-bit arches, the roundup code itself can overflow by doing a 32-bit left-shift of an unsigned long value, which is undefined behaviour, so it is not guaranteed to truncate neatly. This was triggered by syzbot on the DEVMAP_HASH type, which contains the same check, copied from the hashtab code. So apply the same fix to hashtab, by moving the overflow check to before the roundup.

References

►

URL

Tags

	https://git.kernel.org/stable/c/33ec04cadb77605b71d9298311919303d390c4d5
	https://git.kernel.org/stable/c/92c81fbb3ed2e0dfc33a4183a67135e1ab566ace
	https://git.kernel.org/stable/c/64f00b4df0597590b199b62a37a165473bf658a6
	https://git.kernel.org/stable/c/3b08cfc65f07b1132c1979d73f014ae6e04de55d
	https://git.kernel.org/stable/c/a83fdaeaea3677b83a53f72ace2d73a19bcd6d93
	https://git.kernel.org/stable/c/8435f0961bf3dc65e204094349bd9aeaac1f8868
	https://git.kernel.org/stable/c/d817f0d34d927f2deb17dadbfe212c9a6a32ac3e
	https://git.kernel.org/stable/c/a6fa75b5096c0f9826a4fabe22d907b0a5bb1016
	https://git.kernel.org/stable/c/6787d916c2cf9850c97a0a3f73e08c43e7d973b1

Impacted products

Vendor

Product

Version

►

Linux

Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6
Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6
Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6
Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6
Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6
Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6
Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6
Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6
Version: daaf427c6ab392bedcd018e326b2ffa1e1110cd6

Linux

Version: 3.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26884",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-30T19:28:25.440727Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-190",
                "description": "CWE-190 Integer Overflow or Wraparound",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T19:29:01.146Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.540Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/33ec04cadb77605b71d9298311919303d390c4d5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/92c81fbb3ed2e0dfc33a4183a67135e1ab566ace"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/64f00b4df0597590b199b62a37a165473bf658a6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3b08cfc65f07b1132c1979d73f014ae6e04de55d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a83fdaeaea3677b83a53f72ace2d73a19bcd6d93"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8435f0961bf3dc65e204094349bd9aeaac1f8868"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d817f0d34d927f2deb17dadbfe212c9a6a32ac3e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a6fa75b5096c0f9826a4fabe22d907b0a5bb1016"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6787d916c2cf9850c97a0a3f73e08c43e7d973b1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/bpf/hashtab.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "33ec04cadb77605b71d9298311919303d390c4d5",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            },
            {
              "lessThan": "92c81fbb3ed2e0dfc33a4183a67135e1ab566ace",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            },
            {
              "lessThan": "64f00b4df0597590b199b62a37a165473bf658a6",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            },
            {
              "lessThan": "3b08cfc65f07b1132c1979d73f014ae6e04de55d",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            },
            {
              "lessThan": "a83fdaeaea3677b83a53f72ace2d73a19bcd6d93",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            },
            {
              "lessThan": "8435f0961bf3dc65e204094349bd9aeaac1f8868",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            },
            {
              "lessThan": "d817f0d34d927f2deb17dadbfe212c9a6a32ac3e",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            },
            {
              "lessThan": "a6fa75b5096c0f9826a4fabe22d907b0a5bb1016",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            },
            {
              "lessThan": "6787d916c2cf9850c97a0a3f73e08c43e7d973b1",
              "status": "affected",
              "version": "daaf427c6ab392bedcd018e326b2ffa1e1110cd6",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/bpf/hashtab.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.19"
            },
            {
              "lessThan": "3.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbpf: Fix hashtab overflow check on 32-bit arches\n\nThe hashtab code relies on roundup_pow_of_two() to compute the number of\nhash buckets, and contains an overflow check by checking if the\nresulting value is 0. However, on 32-bit arches, the roundup code itself\ncan overflow by doing a 32-bit left-shift of an unsigned long value,\nwhich is undefined behaviour, so it is not guaranteed to truncate\nneatly. This was triggered by syzbot on the DEVMAP_HASH type, which\ncontains the same check, copied from the hashtab code. So apply the same\nfix to hashtab, by moving the overflow check to before the roundup."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:49.845Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/33ec04cadb77605b71d9298311919303d390c4d5"
        },
        {
          "url": "https://git.kernel.org/stable/c/92c81fbb3ed2e0dfc33a4183a67135e1ab566ace"
        },
        {
          "url": "https://git.kernel.org/stable/c/64f00b4df0597590b199b62a37a165473bf658a6"
        },
        {
          "url": "https://git.kernel.org/stable/c/3b08cfc65f07b1132c1979d73f014ae6e04de55d"
        },
        {
          "url": "https://git.kernel.org/stable/c/a83fdaeaea3677b83a53f72ace2d73a19bcd6d93"
        },
        {
          "url": "https://git.kernel.org/stable/c/8435f0961bf3dc65e204094349bd9aeaac1f8868"
        },
        {
          "url": "https://git.kernel.org/stable/c/d817f0d34d927f2deb17dadbfe212c9a6a32ac3e"
        },
        {
          "url": "https://git.kernel.org/stable/c/a6fa75b5096c0f9826a4fabe22d907b0a5bb1016"
        },
        {
          "url": "https://git.kernel.org/stable/c/6787d916c2cf9850c97a0a3f73e08c43e7d973b1"
        }
      ],
      "title": "bpf: Fix hashtab overflow check on 32-bit arches",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26884",
    "datePublished": "2024-04-17T10:27:39.672Z",
    "dateReserved": "2024-02-19T14:20:24.185Z",
    "dateUpdated": "2025-05-04T08:58:49.845Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48642 (GCVE-0-2022-48642)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain() It seems to me that percpu memory for chain stats started leaking since commit 3bc158f8d0330f0a ("netfilter: nf_tables: map basechain priority to hardware priority") when nft_chain_offload_priority() returned an error.

References

►

URL

Tags

	https://git.kernel.org/stable/c/b043a525a3f5520abb676a7cd8f6328fdf959e88
	https://git.kernel.org/stable/c/08d7524f366a886b99b1630a24a27dd6e0d7f852
	https://git.kernel.org/stable/c/985b031667c3177b9e7fb9787b989628e4271714
	https://git.kernel.org/stable/c/9a4d6dd554b86e65581ef6b6638a39ae079b17ac

Impacted products

Vendor

Product

Version

►

Linux

Version: 3bc158f8d0330f0ac58597c023acca2234c14616
Version: 3bc158f8d0330f0ac58597c023acca2234c14616
Version: 3bc158f8d0330f0ac58597c023acca2234c14616
Version: 3bc158f8d0330f0ac58597c023acca2234c14616

Linux

Version: 5.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48642",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T19:09:12.381196Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T19:09:22.049Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.652Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b043a525a3f5520abb676a7cd8f6328fdf959e88"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/08d7524f366a886b99b1630a24a27dd6e0d7f852"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/985b031667c3177b9e7fb9787b989628e4271714"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9a4d6dd554b86e65581ef6b6638a39ae079b17ac"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/netfilter/nf_tables_api.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b043a525a3f5520abb676a7cd8f6328fdf959e88",
              "status": "affected",
              "version": "3bc158f8d0330f0ac58597c023acca2234c14616",
              "versionType": "git"
            },
            {
              "lessThan": "08d7524f366a886b99b1630a24a27dd6e0d7f852",
              "status": "affected",
              "version": "3bc158f8d0330f0ac58597c023acca2234c14616",
              "versionType": "git"
            },
            {
              "lessThan": "985b031667c3177b9e7fb9787b989628e4271714",
              "status": "affected",
              "version": "3bc158f8d0330f0ac58597c023acca2234c14616",
              "versionType": "git"
            },
            {
              "lessThan": "9a4d6dd554b86e65581ef6b6638a39ae079b17ac",
              "status": "affected",
              "version": "3bc158f8d0330f0ac58597c023acca2234c14616",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/netfilter/nf_tables_api.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.3"
            },
            {
              "lessThan": "5.3",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.3",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nf_tables: fix percpu memory leak at nf_tables_addchain()\n\nIt seems to me that percpu memory for chain stats started leaking since\ncommit 3bc158f8d0330f0a (\"netfilter: nf_tables: map basechain priority to\nhardware priority\") when nft_chain_offload_priority() returned an error."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:20.039Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b043a525a3f5520abb676a7cd8f6328fdf959e88"
        },
        {
          "url": "https://git.kernel.org/stable/c/08d7524f366a886b99b1630a24a27dd6e0d7f852"
        },
        {
          "url": "https://git.kernel.org/stable/c/985b031667c3177b9e7fb9787b989628e4271714"
        },
        {
          "url": "https://git.kernel.org/stable/c/9a4d6dd554b86e65581ef6b6638a39ae079b17ac"
        }
      ],
      "title": "netfilter: nf_tables: fix percpu memory leak at nf_tables_addchain()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48642",
    "datePublished": "2024-04-28T12:59:57.575Z",
    "dateReserved": "2024-02-25T13:44:28.316Z",
    "dateUpdated": "2025-05-04T08:20:20.039Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26903 (GCVE-0-2024-26903)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:59

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a normal connection and disconnection process with the testcase that triggered a KASAN report. We analyzed the cause of this bug as follows: 1. In the packets captured during a normal connection, the host sends a `Read Encryption Key Size` type of `HCI_CMD` packet (Command Opcode: 0x1408) to the controller to inquire the length of encryption key.After receiving this packet, the controller immediately replies with a Command Completepacket (Event Code: 0x0e) to return the Encryption Key Size. 2. In our fuzz test case, the timing of the controller's response to this packet was delayed to an unexpected point: after the RFCOMM and L2CAP layers had disconnected but before the HCI layer had disconnected. 3. After receiving the Encryption Key Size Response at the time described in point 2, the host still called the rfcomm_check_security function. However, by this time `struct l2cap_conn *conn = l2cap_pi(sk)->chan->conn;` had already been released, and when the function executed `return hci_conn_security(conn->hcon, d->sec_level, auth_type, d->out);`, specifically when accessing `conn->hcon`, a null-ptr-deref error occurred. To fix this bug, check if `sk->sk_state` is BT_CLOSED before calling rfcomm_recv_frame in rfcomm_process_rx.

References

►

URL

Tags

	https://git.kernel.org/stable/c/369f419c097e82407dd429a202cde9a73d3ae29b
	https://git.kernel.org/stable/c/5f369efd9d963c1f711a06c9b8baf9f5ce616d85
	https://git.kernel.org/stable/c/81d7d920a22fd58ef9aedb1bd0a68ee32bd23e96
	https://git.kernel.org/stable/c/8d1753973f598531baaa2c1033cf7f7b5bb004b0
	https://git.kernel.org/stable/c/567c0411dc3b424fc7bd1e6109726d7ba32d4f73
	https://git.kernel.org/stable/c/3ead59bafad05f2967ae2438c0528d53244cfde5
	https://git.kernel.org/stable/c/5f9fe302dd3a9bbc50f4888464c1773f45166bfd
	https://git.kernel.org/stable/c/2535b848fa0f42ddff3e5255cf5e742c9b77bb26

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26903",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:41:13.860273Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-476",
                "description": "CWE-476 NULL Pointer Dereference",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-27T18:14:57.007Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.535Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/369f419c097e82407dd429a202cde9a73d3ae29b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5f369efd9d963c1f711a06c9b8baf9f5ce616d85"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/81d7d920a22fd58ef9aedb1bd0a68ee32bd23e96"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8d1753973f598531baaa2c1033cf7f7b5bb004b0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/567c0411dc3b424fc7bd1e6109726d7ba32d4f73"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3ead59bafad05f2967ae2438c0528d53244cfde5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5f9fe302dd3a9bbc50f4888464c1773f45166bfd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2535b848fa0f42ddff3e5255cf5e742c9b77bb26"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/bluetooth/rfcomm/core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "369f419c097e82407dd429a202cde9a73d3ae29b",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5f369efd9d963c1f711a06c9b8baf9f5ce616d85",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "81d7d920a22fd58ef9aedb1bd0a68ee32bd23e96",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "8d1753973f598531baaa2c1033cf7f7b5bb004b0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "567c0411dc3b424fc7bd1e6109726d7ba32d4f73",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "3ead59bafad05f2967ae2438c0528d53244cfde5",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5f9fe302dd3a9bbc50f4888464c1773f45166bfd",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "2535b848fa0f42ddff3e5255cf5e742c9b77bb26",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/bluetooth/rfcomm/core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nBluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security\n\nDuring our fuzz testing of the connection and disconnection process at the\nRFCOMM layer, we discovered this bug. By comparing the packets from a\nnormal connection and disconnection process with the testcase that\ntriggered a KASAN report. We analyzed the cause of this bug as follows:\n\n1. In the packets captured during a normal connection, the host sends a\n`Read Encryption Key Size` type of `HCI_CMD` packet\n(Command Opcode: 0x1408) to the controller to inquire the length of\nencryption key.After receiving this packet, the controller immediately\nreplies with a Command Completepacket (Event Code: 0x0e) to return the\nEncryption Key Size.\n\n2. In our fuzz test case, the timing of the controller\u0027s response to this\npacket was delayed to an unexpected point: after the RFCOMM and L2CAP\nlayers had disconnected but before the HCI layer had disconnected.\n\n3. After receiving the Encryption Key Size Response at the time described\nin point 2, the host still called the rfcomm_check_security function.\nHowever, by this time `struct l2cap_conn *conn = l2cap_pi(sk)-\u003echan-\u003econn;`\nhad already been released, and when the function executed\n`return hci_conn_security(conn-\u003ehcon, d-\u003esec_level, auth_type, d-\u003eout);`,\nspecifically when accessing `conn-\u003ehcon`, a null-ptr-deref error occurred.\n\nTo fix this bug, check if `sk-\u003esk_state` is BT_CLOSED before calling\nrfcomm_recv_frame in rfcomm_process_rx."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:59:18.213Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/369f419c097e82407dd429a202cde9a73d3ae29b"
        },
        {
          "url": "https://git.kernel.org/stable/c/5f369efd9d963c1f711a06c9b8baf9f5ce616d85"
        },
        {
          "url": "https://git.kernel.org/stable/c/81d7d920a22fd58ef9aedb1bd0a68ee32bd23e96"
        },
        {
          "url": "https://git.kernel.org/stable/c/8d1753973f598531baaa2c1033cf7f7b5bb004b0"
        },
        {
          "url": "https://git.kernel.org/stable/c/567c0411dc3b424fc7bd1e6109726d7ba32d4f73"
        },
        {
          "url": "https://git.kernel.org/stable/c/3ead59bafad05f2967ae2438c0528d53244cfde5"
        },
        {
          "url": "https://git.kernel.org/stable/c/5f9fe302dd3a9bbc50f4888464c1773f45166bfd"
        },
        {
          "url": "https://git.kernel.org/stable/c/2535b848fa0f42ddff3e5255cf5e742c9b77bb26"
        }
      ],
      "title": "Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26903",
    "datePublished": "2024-04-17T10:27:51.673Z",
    "dateReserved": "2024-02-19T14:20:24.187Z",
    "dateUpdated": "2025-05-04T08:59:18.213Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27030 (GCVE-0-2024-27030)

Vulnerability from cvelistv5

Published

2024-05-01 12:53

Modified

2025-05-04 09:02

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Use separate handlers for interrupts For PF to AF interrupt vector and VF to AF vector same interrupt handler is registered which is causing race condition. When two interrupts are raised to two CPUs at same time then two cores serve same event corrupting the data.

References

►

URL

Tags

	https://git.kernel.org/stable/c/94cb17e5cf3a3c484063abc0ce4b8a2b2e8c1cb2
	https://git.kernel.org/stable/c/766c2627acb2d9d1722cce2e24837044d52d888a
	https://git.kernel.org/stable/c/772f18ded0e240cc1fa2b7020cc640e3e5c32b70
	https://git.kernel.org/stable/c/29d2550d79a8cbd31e0fbaa5c0e2a2efdc444e44
	https://git.kernel.org/stable/c/dc29dd00705a62c77de75b6d752259b869aac49d
	https://git.kernel.org/stable/c/ad6759e233db6fcc131055f8e23b4eafbe81053c
	https://git.kernel.org/stable/c/4fedae8f9eafa2ac8cdaca58e315f52a7e2a8701
	https://git.kernel.org/stable/c/50e60de381c342008c0956fd762e1c26408f372c

Impacted products

Vendor

Product

Version

►

Linux

Version: 7304ac4567bcb72fd57cc79582bf53ca7840136f
Version: 7304ac4567bcb72fd57cc79582bf53ca7840136f
Version: 7304ac4567bcb72fd57cc79582bf53ca7840136f
Version: 7304ac4567bcb72fd57cc79582bf53ca7840136f
Version: 7304ac4567bcb72fd57cc79582bf53ca7840136f
Version: 7304ac4567bcb72fd57cc79582bf53ca7840136f
Version: 7304ac4567bcb72fd57cc79582bf53ca7840136f
Version: 7304ac4567bcb72fd57cc79582bf53ca7840136f

Linux

Version: 4.20

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.937Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/94cb17e5cf3a3c484063abc0ce4b8a2b2e8c1cb2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/766c2627acb2d9d1722cce2e24837044d52d888a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/772f18ded0e240cc1fa2b7020cc640e3e5c32b70"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/29d2550d79a8cbd31e0fbaa5c0e2a2efdc444e44"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dc29dd00705a62c77de75b6d752259b869aac49d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ad6759e233db6fcc131055f8e23b4eafbe81053c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4fedae8f9eafa2ac8cdaca58e315f52a7e2a8701"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/50e60de381c342008c0956fd762e1c26408f372c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27030",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:44:21.007612Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:33.167Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/marvell/octeontx2/af/rvu.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "94cb17e5cf3a3c484063abc0ce4b8a2b2e8c1cb2",
              "status": "affected",
              "version": "7304ac4567bcb72fd57cc79582bf53ca7840136f",
              "versionType": "git"
            },
            {
              "lessThan": "766c2627acb2d9d1722cce2e24837044d52d888a",
              "status": "affected",
              "version": "7304ac4567bcb72fd57cc79582bf53ca7840136f",
              "versionType": "git"
            },
            {
              "lessThan": "772f18ded0e240cc1fa2b7020cc640e3e5c32b70",
              "status": "affected",
              "version": "7304ac4567bcb72fd57cc79582bf53ca7840136f",
              "versionType": "git"
            },
            {
              "lessThan": "29d2550d79a8cbd31e0fbaa5c0e2a2efdc444e44",
              "status": "affected",
              "version": "7304ac4567bcb72fd57cc79582bf53ca7840136f",
              "versionType": "git"
            },
            {
              "lessThan": "dc29dd00705a62c77de75b6d752259b869aac49d",
              "status": "affected",
              "version": "7304ac4567bcb72fd57cc79582bf53ca7840136f",
              "versionType": "git"
            },
            {
              "lessThan": "ad6759e233db6fcc131055f8e23b4eafbe81053c",
              "status": "affected",
              "version": "7304ac4567bcb72fd57cc79582bf53ca7840136f",
              "versionType": "git"
            },
            {
              "lessThan": "4fedae8f9eafa2ac8cdaca58e315f52a7e2a8701",
              "status": "affected",
              "version": "7304ac4567bcb72fd57cc79582bf53ca7840136f",
              "versionType": "git"
            },
            {
              "lessThan": "50e60de381c342008c0956fd762e1c26408f372c",
              "status": "affected",
              "version": "7304ac4567bcb72fd57cc79582bf53ca7840136f",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/marvell/octeontx2/af/rvu.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.20"
            },
            {
              "lessThan": "4.20",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.20",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nocteontx2-af: Use separate handlers for interrupts\n\nFor PF to AF interrupt vector and VF to AF vector same\ninterrupt handler is registered which is causing race condition.\nWhen two interrupts are raised to two CPUs at same time\nthen two cores serve same event corrupting the data."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:02:40.056Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/94cb17e5cf3a3c484063abc0ce4b8a2b2e8c1cb2"
        },
        {
          "url": "https://git.kernel.org/stable/c/766c2627acb2d9d1722cce2e24837044d52d888a"
        },
        {
          "url": "https://git.kernel.org/stable/c/772f18ded0e240cc1fa2b7020cc640e3e5c32b70"
        },
        {
          "url": "https://git.kernel.org/stable/c/29d2550d79a8cbd31e0fbaa5c0e2a2efdc444e44"
        },
        {
          "url": "https://git.kernel.org/stable/c/dc29dd00705a62c77de75b6d752259b869aac49d"
        },
        {
          "url": "https://git.kernel.org/stable/c/ad6759e233db6fcc131055f8e23b4eafbe81053c"
        },
        {
          "url": "https://git.kernel.org/stable/c/4fedae8f9eafa2ac8cdaca58e315f52a7e2a8701"
        },
        {
          "url": "https://git.kernel.org/stable/c/50e60de381c342008c0956fd762e1c26408f372c"
        }
      ],
      "title": "octeontx2-af: Use separate handlers for interrupts",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27030",
    "datePublished": "2024-05-01T12:53:25.954Z",
    "dateReserved": "2024-02-19T14:20:24.211Z",
    "dateUpdated": "2025-05-04T09:02:40.056Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26895 (GCVE-0-2024-26895)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:59

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: prevent use-after-free on vif when cleaning up all interfaces wilc_netdev_cleanup currently triggers a KASAN warning, which can be observed on interface registration error path, or simply by removing the module/unbinding device from driver: echo spi0.1 > /sys/bus/spi/drivers/wilc1000_spi/unbind ================================================================== BUG: KASAN: slab-use-after-free in wilc_netdev_cleanup+0x508/0x5cc Read of size 4 at addr c54d1ce8 by task sh/86 CPU: 0 PID: 86 Comm: sh Not tainted 6.8.0-rc1+ #117 Hardware name: Atmel SAMA5 unwind_backtrace from show_stack+0x18/0x1c show_stack from dump_stack_lvl+0x34/0x58 dump_stack_lvl from print_report+0x154/0x500 print_report from kasan_report+0xac/0xd8 kasan_report from wilc_netdev_cleanup+0x508/0x5cc wilc_netdev_cleanup from wilc_bus_remove+0xc8/0xec wilc_bus_remove from spi_remove+0x8c/0xac spi_remove from device_release_driver_internal+0x434/0x5f8 device_release_driver_internal from unbind_store+0xbc/0x108 unbind_store from kernfs_fop_write_iter+0x398/0x584 kernfs_fop_write_iter from vfs_write+0x728/0xf88 vfs_write from ksys_write+0x110/0x1e4 ksys_write from ret_fast_syscall+0x0/0x1c [...] Allocated by task 1: kasan_save_track+0x30/0x5c __kasan_kmalloc+0x8c/0x94 __kmalloc_node+0x1cc/0x3e4 kvmalloc_node+0x48/0x180 alloc_netdev_mqs+0x68/0x11dc alloc_etherdev_mqs+0x28/0x34 wilc_netdev_ifc_init+0x34/0x8ec wilc_cfg80211_init+0x690/0x910 wilc_bus_probe+0xe0/0x4a0 spi_probe+0x158/0x1b0 really_probe+0x270/0xdf4 __driver_probe_device+0x1dc/0x580 driver_probe_device+0x60/0x140 __driver_attach+0x228/0x5d4 bus_for_each_dev+0x13c/0x1a8 bus_add_driver+0x2a0/0x608 driver_register+0x24c/0x578 do_one_initcall+0x180/0x310 kernel_init_freeable+0x424/0x484 kernel_init+0x20/0x148 ret_from_fork+0x14/0x28 Freed by task 86: kasan_save_track+0x30/0x5c kasan_save_free_info+0x38/0x58 __kasan_slab_free+0xe4/0x140 kfree+0xb0/0x238 device_release+0xc0/0x2a8 kobject_put+0x1d4/0x46c netdev_run_todo+0x8fc/0x11d0 wilc_netdev_cleanup+0x1e4/0x5cc wilc_bus_remove+0xc8/0xec spi_remove+0x8c/0xac device_release_driver_internal+0x434/0x5f8 unbind_store+0xbc/0x108 kernfs_fop_write_iter+0x398/0x584 vfs_write+0x728/0xf88 ksys_write+0x110/0x1e4 ret_fast_syscall+0x0/0x1c [...] David Mosberger-Tan initial investigation [1] showed that this use-after-free is due to netdevice unregistration during vif list traversal. When unregistering a net device, since the needs_free_netdev has been set to true during registration, the netdevice object is also freed, and as a consequence, the corresponding vif object too, since it is attached to it as private netdevice data. The next occurrence of the loop then tries to access freed vif pointer to the list to move forward in the list. Fix this use-after-free thanks to two mechanisms: - navigate in the list with list_for_each_entry_safe, which allows to safely modify the list as we go through each element. For each element, remove it from the list with list_del_rcu - make sure to wait for RCU grace period end after each vif removal to make sure it is safe to free the corresponding vif too (through unregister_netdev) Since we are in a RCU "modifier" path (not a "reader" path), and because such path is expected not to be concurrent to any other modifier (we are using the vif_mutex lock), we do not need to use RCU list API, that's why we can benefit from list_for_each_entry_safe. [1] https://lore.kernel.org/linux-wireless/ab077dbe58b1ea5de0a3b2ca21f275a07af967d2.camel@egauge.net/

References

►

URL

Tags

	https://git.kernel.org/stable/c/5956f4203b6cdd0755bbdd21b45f3933c7026208
	https://git.kernel.org/stable/c/fe20e3d56bc911408fc3c27a17c59e9d7885f7d1
	https://git.kernel.org/stable/c/a9545af2a533739ffb64d6c9a6fec6f13e2b505f
	https://git.kernel.org/stable/c/3da9d32b7f4a1a9f7e4bb15bb82f2b2dd6719447
	https://git.kernel.org/stable/c/24228dcf1d30c2231caa332be7d3090ac59fbfe9
	https://git.kernel.org/stable/c/73a2aa0aef86c2c07be5a2f42c9e6047e1a2f7bb
	https://git.kernel.org/stable/c/cb5942b77c05d54310a0420cac12935e9b6aa21c

Impacted products

Vendor

Product

Version

►

Linux

Version: 8399918f3056e1033f0f4c08eab437fb38d6f22d
Version: 8399918f3056e1033f0f4c08eab437fb38d6f22d
Version: 8399918f3056e1033f0f4c08eab437fb38d6f22d
Version: 8399918f3056e1033f0f4c08eab437fb38d6f22d
Version: 8399918f3056e1033f0f4c08eab437fb38d6f22d
Version: 8399918f3056e1033f0f4c08eab437fb38d6f22d
Version: 8399918f3056e1033f0f4c08eab437fb38d6f22d

Linux

Version: 5.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.707Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5956f4203b6cdd0755bbdd21b45f3933c7026208"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fe20e3d56bc911408fc3c27a17c59e9d7885f7d1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a9545af2a533739ffb64d6c9a6fec6f13e2b505f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3da9d32b7f4a1a9f7e4bb15bb82f2b2dd6719447"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/24228dcf1d30c2231caa332be7d3090ac59fbfe9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/73a2aa0aef86c2c07be5a2f42c9e6047e1a2f7bb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cb5942b77c05d54310a0420cac12935e9b6aa21c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26895",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:48:12.761255Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:23.894Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/microchip/wilc1000/netdev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "5956f4203b6cdd0755bbdd21b45f3933c7026208",
              "status": "affected",
              "version": "8399918f3056e1033f0f4c08eab437fb38d6f22d",
              "versionType": "git"
            },
            {
              "lessThan": "fe20e3d56bc911408fc3c27a17c59e9d7885f7d1",
              "status": "affected",
              "version": "8399918f3056e1033f0f4c08eab437fb38d6f22d",
              "versionType": "git"
            },
            {
              "lessThan": "a9545af2a533739ffb64d6c9a6fec6f13e2b505f",
              "status": "affected",
              "version": "8399918f3056e1033f0f4c08eab437fb38d6f22d",
              "versionType": "git"
            },
            {
              "lessThan": "3da9d32b7f4a1a9f7e4bb15bb82f2b2dd6719447",
              "status": "affected",
              "version": "8399918f3056e1033f0f4c08eab437fb38d6f22d",
              "versionType": "git"
            },
            {
              "lessThan": "24228dcf1d30c2231caa332be7d3090ac59fbfe9",
              "status": "affected",
              "version": "8399918f3056e1033f0f4c08eab437fb38d6f22d",
              "versionType": "git"
            },
            {
              "lessThan": "73a2aa0aef86c2c07be5a2f42c9e6047e1a2f7bb",
              "status": "affected",
              "version": "8399918f3056e1033f0f4c08eab437fb38d6f22d",
              "versionType": "git"
            },
            {
              "lessThan": "cb5942b77c05d54310a0420cac12935e9b6aa21c",
              "status": "affected",
              "version": "8399918f3056e1033f0f4c08eab437fb38d6f22d",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/wireless/microchip/wilc1000/netdev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.5"
            },
            {
              "lessThan": "5.5",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwifi: wilc1000: prevent use-after-free on vif when cleaning up all interfaces\n\nwilc_netdev_cleanup currently triggers a KASAN warning, which can be\nobserved on interface registration error path, or simply by\nremoving the module/unbinding device from driver:\n\necho spi0.1 \u003e /sys/bus/spi/drivers/wilc1000_spi/unbind\n\n==================================================================\nBUG: KASAN: slab-use-after-free in wilc_netdev_cleanup+0x508/0x5cc\nRead of size 4 at addr c54d1ce8 by task sh/86\n\nCPU: 0 PID: 86 Comm: sh Not tainted 6.8.0-rc1+ #117\nHardware name: Atmel SAMA5\n unwind_backtrace from show_stack+0x18/0x1c\n show_stack from dump_stack_lvl+0x34/0x58\n dump_stack_lvl from print_report+0x154/0x500\n print_report from kasan_report+0xac/0xd8\n kasan_report from wilc_netdev_cleanup+0x508/0x5cc\n wilc_netdev_cleanup from wilc_bus_remove+0xc8/0xec\n wilc_bus_remove from spi_remove+0x8c/0xac\n spi_remove from device_release_driver_internal+0x434/0x5f8\n device_release_driver_internal from unbind_store+0xbc/0x108\n unbind_store from kernfs_fop_write_iter+0x398/0x584\n kernfs_fop_write_iter from vfs_write+0x728/0xf88\n vfs_write from ksys_write+0x110/0x1e4\n ksys_write from ret_fast_syscall+0x0/0x1c\n\n[...]\n\nAllocated by task 1:\n kasan_save_track+0x30/0x5c\n __kasan_kmalloc+0x8c/0x94\n __kmalloc_node+0x1cc/0x3e4\n kvmalloc_node+0x48/0x180\n alloc_netdev_mqs+0x68/0x11dc\n alloc_etherdev_mqs+0x28/0x34\n wilc_netdev_ifc_init+0x34/0x8ec\n wilc_cfg80211_init+0x690/0x910\n wilc_bus_probe+0xe0/0x4a0\n spi_probe+0x158/0x1b0\n really_probe+0x270/0xdf4\n __driver_probe_device+0x1dc/0x580\n driver_probe_device+0x60/0x140\n __driver_attach+0x228/0x5d4\n bus_for_each_dev+0x13c/0x1a8\n bus_add_driver+0x2a0/0x608\n driver_register+0x24c/0x578\n do_one_initcall+0x180/0x310\n kernel_init_freeable+0x424/0x484\n kernel_init+0x20/0x148\n ret_from_fork+0x14/0x28\n\nFreed by task 86:\n kasan_save_track+0x30/0x5c\n kasan_save_free_info+0x38/0x58\n __kasan_slab_free+0xe4/0x140\n kfree+0xb0/0x238\n device_release+0xc0/0x2a8\n kobject_put+0x1d4/0x46c\n netdev_run_todo+0x8fc/0x11d0\n wilc_netdev_cleanup+0x1e4/0x5cc\n wilc_bus_remove+0xc8/0xec\n spi_remove+0x8c/0xac\n device_release_driver_internal+0x434/0x5f8\n unbind_store+0xbc/0x108\n kernfs_fop_write_iter+0x398/0x584\n vfs_write+0x728/0xf88\n ksys_write+0x110/0x1e4\n ret_fast_syscall+0x0/0x1c\n [...]\n\nDavid Mosberger-Tan initial investigation [1] showed that this\nuse-after-free is due to netdevice unregistration during vif list\ntraversal. When unregistering a net device, since the needs_free_netdev has\nbeen set to true during registration, the netdevice object is also freed,\nand as a consequence, the corresponding vif object too, since it is\nattached to it as private netdevice data. The next occurrence of the loop\nthen tries to access freed vif pointer to the list to move forward in the\nlist.\n\nFix this use-after-free thanks to two mechanisms:\n- navigate in the list with list_for_each_entry_safe, which allows to\n  safely modify the list as we go through each element. For each element,\n  remove it from the list with list_del_rcu\n- make sure to wait for RCU grace period end after each vif removal to make\n  sure it is safe to free the corresponding vif too (through\n  unregister_netdev)\n\nSince we are in a RCU \"modifier\" path (not a \"reader\" path), and because\nsuch path is expected not to be concurrent to any other modifier (we are\nusing the vif_mutex lock), we do not need to use RCU list API, that\u0027s why\nwe can benefit from list_for_each_entry_safe.\n\n[1] https://lore.kernel.org/linux-wireless/ab077dbe58b1ea5de0a3b2ca21f275a07af967d2.camel@egauge.net/"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:59:06.398Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/5956f4203b6cdd0755bbdd21b45f3933c7026208"
        },
        {
          "url": "https://git.kernel.org/stable/c/fe20e3d56bc911408fc3c27a17c59e9d7885f7d1"
        },
        {
          "url": "https://git.kernel.org/stable/c/a9545af2a533739ffb64d6c9a6fec6f13e2b505f"
        },
        {
          "url": "https://git.kernel.org/stable/c/3da9d32b7f4a1a9f7e4bb15bb82f2b2dd6719447"
        },
        {
          "url": "https://git.kernel.org/stable/c/24228dcf1d30c2231caa332be7d3090ac59fbfe9"
        },
        {
          "url": "https://git.kernel.org/stable/c/73a2aa0aef86c2c07be5a2f42c9e6047e1a2f7bb"
        },
        {
          "url": "https://git.kernel.org/stable/c/cb5942b77c05d54310a0420cac12935e9b6aa21c"
        }
      ],
      "title": "wifi: wilc1000: prevent use-after-free on vif when cleaning up all interfaces",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26895",
    "datePublished": "2024-04-17T10:27:46.585Z",
    "dateReserved": "2024-02-19T14:20:24.186Z",
    "dateUpdated": "2025-05-04T08:59:06.398Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48702 (GCVE-0-2022-48702)

Vulnerability from cvelistv5

Published

2024-05-03 15:13

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc() The voice allocator sometimes begins allocating from near the end of the array and then wraps around, however snd_emu10k1_pcm_channel_alloc() accesses the newly allocated voices as if it never wrapped around. This results in out of bounds access if the first voice has a high enough index so that first_voice + requested_voice_count > NUM_G (64). The more voices are requested, the more likely it is for this to occur. This was initially discovered using PipeWire, however it can be reproduced by calling aplay multiple times with 16 channels: aplay -r 48000 -D plughw:CARD=Live,DEV=3 -c 16 /dev/zero UBSAN: array-index-out-of-bounds in sound/pci/emu10k1/emupcm.c:127:40 index 65 is out of range for type 'snd_emu10k1_voice [64]' CPU: 1 PID: 31977 Comm: aplay Tainted: G W IOE 6.0.0-rc2-emu10k1+ #7 Hardware name: ASUSTEK COMPUTER INC P5W DH Deluxe/P5W DH Deluxe, BIOS 3002 07/22/2010 Call Trace: <TASK> dump_stack_lvl+0x49/0x63 dump_stack+0x10/0x16 ubsan_epilogue+0x9/0x3f __ubsan_handle_out_of_bounds.cold+0x44/0x49 snd_emu10k1_playback_hw_params+0x3bc/0x420 [snd_emu10k1] snd_pcm_hw_params+0x29f/0x600 [snd_pcm] snd_pcm_common_ioctl+0x188/0x1410 [snd_pcm] ? exit_to_user_mode_prepare+0x35/0x170 ? do_syscall_64+0x69/0x90 ? syscall_exit_to_user_mode+0x26/0x50 ? do_syscall_64+0x69/0x90 ? exit_to_user_mode_prepare+0x35/0x170 snd_pcm_ioctl+0x27/0x40 [snd_pcm] __x64_sys_ioctl+0x95/0xd0 do_syscall_64+0x5c/0x90 ? do_syscall_64+0x69/0x90 ? do_syscall_64+0x69/0x90 entry_SYSCALL_64_after_hwframe+0x63/0xcd

References

►

URL

Tags

	https://git.kernel.org/stable/c/637c5310acb48fffcc5657568db3f3e9bc719bfa
	https://git.kernel.org/stable/c/6b0e260ac3cf289e38446552461caa65e6dab275
	https://git.kernel.org/stable/c/88aac6684cf8bc885cca15463cb4407e91f28ff7
	https://git.kernel.org/stable/c/45321a7d02b7cf9b3f97e3987fc1e4d649b82da2
	https://git.kernel.org/stable/c/39a90720f3abe96625d1224e7a7463410875de4c
	https://git.kernel.org/stable/c/45814a53514e10a8014906c882e0d0d38df39cc1
	https://git.kernel.org/stable/c/4204a01ffce97cae1d59edc5848f02be5b2b9178
	https://git.kernel.org/stable/c/d29f59051d3a07b81281b2df2b8c9dfe4716067f

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48702",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-09T18:37:27.683467Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:45.700Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.829Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/637c5310acb48fffcc5657568db3f3e9bc719bfa"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6b0e260ac3cf289e38446552461caa65e6dab275"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/88aac6684cf8bc885cca15463cb4407e91f28ff7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/45321a7d02b7cf9b3f97e3987fc1e4d649b82da2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/39a90720f3abe96625d1224e7a7463410875de4c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/45814a53514e10a8014906c882e0d0d38df39cc1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4204a01ffce97cae1d59edc5848f02be5b2b9178"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d29f59051d3a07b81281b2df2b8c9dfe4716067f"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "sound/pci/emu10k1/emupcm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "637c5310acb48fffcc5657568db3f3e9bc719bfa",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6b0e260ac3cf289e38446552461caa65e6dab275",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "88aac6684cf8bc885cca15463cb4407e91f28ff7",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "45321a7d02b7cf9b3f97e3987fc1e4d649b82da2",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "39a90720f3abe96625d1224e7a7463410875de4c",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "45814a53514e10a8014906c882e0d0d38df39cc1",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4204a01ffce97cae1d59edc5848f02be5b2b9178",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "d29f59051d3a07b81281b2df2b8c9dfe4716067f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "sound/pci/emu10k1/emupcm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.328",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.293",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.258",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.328",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.293",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.258",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc()\n\nThe voice allocator sometimes begins allocating from near the end of the\narray and then wraps around, however snd_emu10k1_pcm_channel_alloc()\naccesses the newly allocated voices as if it never wrapped around.\n\nThis results in out of bounds access if the first voice has a high enough\nindex so that first_voice + requested_voice_count \u003e NUM_G (64).\nThe more voices are requested, the more likely it is for this to occur.\n\nThis was initially discovered using PipeWire, however it can be reproduced\nby calling aplay multiple times with 16 channels:\naplay -r 48000 -D plughw:CARD=Live,DEV=3 -c 16 /dev/zero\n\nUBSAN: array-index-out-of-bounds in sound/pci/emu10k1/emupcm.c:127:40\nindex 65 is out of range for type \u0027snd_emu10k1_voice [64]\u0027\nCPU: 1 PID: 31977 Comm: aplay Tainted: G        W IOE      6.0.0-rc2-emu10k1+ #7\nHardware name: ASUSTEK COMPUTER INC P5W DH Deluxe/P5W DH Deluxe, BIOS 3002    07/22/2010\nCall Trace:\n\u003cTASK\u003e\ndump_stack_lvl+0x49/0x63\ndump_stack+0x10/0x16\nubsan_epilogue+0x9/0x3f\n__ubsan_handle_out_of_bounds.cold+0x44/0x49\nsnd_emu10k1_playback_hw_params+0x3bc/0x420 [snd_emu10k1]\nsnd_pcm_hw_params+0x29f/0x600 [snd_pcm]\nsnd_pcm_common_ioctl+0x188/0x1410 [snd_pcm]\n? exit_to_user_mode_prepare+0x35/0x170\n? do_syscall_64+0x69/0x90\n? syscall_exit_to_user_mode+0x26/0x50\n? do_syscall_64+0x69/0x90\n? exit_to_user_mode_prepare+0x35/0x170\nsnd_pcm_ioctl+0x27/0x40 [snd_pcm]\n__x64_sys_ioctl+0x95/0xd0\ndo_syscall_64+0x5c/0x90\n? do_syscall_64+0x69/0x90\n? do_syscall_64+0x69/0x90\nentry_SYSCALL_64_after_hwframe+0x63/0xcd"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:21.127Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/637c5310acb48fffcc5657568db3f3e9bc719bfa"
        },
        {
          "url": "https://git.kernel.org/stable/c/6b0e260ac3cf289e38446552461caa65e6dab275"
        },
        {
          "url": "https://git.kernel.org/stable/c/88aac6684cf8bc885cca15463cb4407e91f28ff7"
        },
        {
          "url": "https://git.kernel.org/stable/c/45321a7d02b7cf9b3f97e3987fc1e4d649b82da2"
        },
        {
          "url": "https://git.kernel.org/stable/c/39a90720f3abe96625d1224e7a7463410875de4c"
        },
        {
          "url": "https://git.kernel.org/stable/c/45814a53514e10a8014906c882e0d0d38df39cc1"
        },
        {
          "url": "https://git.kernel.org/stable/c/4204a01ffce97cae1d59edc5848f02be5b2b9178"
        },
        {
          "url": "https://git.kernel.org/stable/c/d29f59051d3a07b81281b2df2b8c9dfe4716067f"
        }
      ],
      "title": "ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48702",
    "datePublished": "2024-05-03T15:13:10.363Z",
    "dateReserved": "2024-05-03T14:55:07.146Z",
    "dateUpdated": "2025-05-04T08:21:21.127Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26956 (GCVE-0-2024-26956)

Vulnerability from cvelistv5

Published

2024-05-01 05:18

Modified

2025-05-04 09:00

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix failure to detect DAT corruption in btree and direct mappings Patch series "nilfs2: fix kernel bug at submit_bh_wbc()". This resolves a kernel BUG reported by syzbot. Since there are two flaws involved, I've made each one a separate patch. The first patch alone resolves the syzbot-reported bug, but I think both fixes should be sent to stable, so I've tagged them as such. This patch (of 2): Syzbot has reported a kernel bug in submit_bh_wbc() when writing file data to a nilfs2 file system whose metadata is corrupted. There are two flaws involved in this issue. The first flaw is that when nilfs_get_block() locates a data block using btree or direct mapping, if the disk address translation routine nilfs_dat_translate() fails with internal code -ENOENT due to DAT metadata corruption, it can be passed back to nilfs_get_block(). This causes nilfs_get_block() to misidentify an existing block as non-existent, causing both data block lookup and insertion to fail inconsistently. The second flaw is that nilfs_get_block() returns a successful status in this inconsistent state. This causes the caller __block_write_begin_int() or others to request a read even though the buffer is not mapped, resulting in a BUG_ON check for the BH_Mapped flag in submit_bh_wbc() failing. This fixes the first issue by changing the return value to code -EINVAL when a conversion using DAT fails with code -ENOENT, avoiding the conflicting condition that leads to the kernel bug described above. Here, code -EINVAL indicates that metadata corruption was detected during the block lookup, which will be properly handled as a file system error and converted to -EIO when passing through the nilfs2 bmap layer.

References

►

URL

Tags

	https://git.kernel.org/stable/c/b67189690eb4b7ecc84ae16fa1e880e0123eaa35
	https://git.kernel.org/stable/c/9cbe1ad5f4354f4df1445e5f4883983328cd6d8e
	https://git.kernel.org/stable/c/c3b5c5c31e723b568f83d8cafab8629d9d830ffb
	https://git.kernel.org/stable/c/2e2619ff5d0def4bb6c2037a32a6eaa28dd95c84
	https://git.kernel.org/stable/c/46b832e09d43b394ac0f6d9485d2b1a06593f0b7
	https://git.kernel.org/stable/c/f69e81396aea66304d214f175aa371f1b5578862
	https://git.kernel.org/stable/c/a8e4d098de1c0f4c5c1f2ed4633a860f0da6d713
	https://git.kernel.org/stable/c/82827ca21e7c8a91384c5baa656f78a5adfa4ab4
	https://git.kernel.org/stable/c/f2f26b4a84a0ef41791bd2d70861c8eac748f4ba

Impacted products

Vendor

Product

Version

►

Linux

Version: c3a7abf06ce719a51139e62a034590be99abbc2c
Version: c3a7abf06ce719a51139e62a034590be99abbc2c
Version: c3a7abf06ce719a51139e62a034590be99abbc2c
Version: c3a7abf06ce719a51139e62a034590be99abbc2c
Version: c3a7abf06ce719a51139e62a034590be99abbc2c
Version: c3a7abf06ce719a51139e62a034590be99abbc2c
Version: c3a7abf06ce719a51139e62a034590be99abbc2c
Version: c3a7abf06ce719a51139e62a034590be99abbc2c
Version: c3a7abf06ce719a51139e62a034590be99abbc2c

Linux

Version: 2.6.31

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26956",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-06T18:55:00.382518Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-04T16:25:30.144Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.748Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b67189690eb4b7ecc84ae16fa1e880e0123eaa35"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9cbe1ad5f4354f4df1445e5f4883983328cd6d8e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c3b5c5c31e723b568f83d8cafab8629d9d830ffb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2e2619ff5d0def4bb6c2037a32a6eaa28dd95c84"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/46b832e09d43b394ac0f6d9485d2b1a06593f0b7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f69e81396aea66304d214f175aa371f1b5578862"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a8e4d098de1c0f4c5c1f2ed4633a860f0da6d713"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/82827ca21e7c8a91384c5baa656f78a5adfa4ab4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f2f26b4a84a0ef41791bd2d70861c8eac748f4ba"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/btree.c",
            "fs/nilfs2/direct.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b67189690eb4b7ecc84ae16fa1e880e0123eaa35",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            },
            {
              "lessThan": "9cbe1ad5f4354f4df1445e5f4883983328cd6d8e",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            },
            {
              "lessThan": "c3b5c5c31e723b568f83d8cafab8629d9d830ffb",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            },
            {
              "lessThan": "2e2619ff5d0def4bb6c2037a32a6eaa28dd95c84",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            },
            {
              "lessThan": "46b832e09d43b394ac0f6d9485d2b1a06593f0b7",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            },
            {
              "lessThan": "f69e81396aea66304d214f175aa371f1b5578862",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            },
            {
              "lessThan": "a8e4d098de1c0f4c5c1f2ed4633a860f0da6d713",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            },
            {
              "lessThan": "82827ca21e7c8a91384c5baa656f78a5adfa4ab4",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            },
            {
              "lessThan": "f2f26b4a84a0ef41791bd2d70861c8eac748f4ba",
              "status": "affected",
              "version": "c3a7abf06ce719a51139e62a034590be99abbc2c",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/nilfs2/btree.c",
            "fs/nilfs2/direct.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.31"
            },
            {
              "lessThan": "2.6.31",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.312",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.312",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.31",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: fix failure to detect DAT corruption in btree and direct mappings\n\nPatch series \"nilfs2: fix kernel bug at submit_bh_wbc()\".\n\nThis resolves a kernel BUG reported by syzbot.  Since there are two\nflaws involved, I\u0027ve made each one a separate patch.\n\nThe first patch alone resolves the syzbot-reported bug, but I think\nboth fixes should be sent to stable, so I\u0027ve tagged them as such.\n\n\nThis patch (of 2):\n\nSyzbot has reported a kernel bug in submit_bh_wbc() when writing file data\nto a nilfs2 file system whose metadata is corrupted.\n\nThere are two flaws involved in this issue.\n\nThe first flaw is that when nilfs_get_block() locates a data block using\nbtree or direct mapping, if the disk address translation routine\nnilfs_dat_translate() fails with internal code -ENOENT due to DAT metadata\ncorruption, it can be passed back to nilfs_get_block().  This causes\nnilfs_get_block() to misidentify an existing block as non-existent,\ncausing both data block lookup and insertion to fail inconsistently.\n\nThe second flaw is that nilfs_get_block() returns a successful status in\nthis inconsistent state.  This causes the caller __block_write_begin_int()\nor others to request a read even though the buffer is not mapped,\nresulting in a BUG_ON check for the BH_Mapped flag in submit_bh_wbc()\nfailing.\n\nThis fixes the first issue by changing the return value to code -EINVAL\nwhen a conversion using DAT fails with code -ENOENT, avoiding the\nconflicting condition that leads to the kernel bug described above.  Here,\ncode -EINVAL indicates that metadata corruption was detected during the\nblock lookup, which will be properly handled as a file system error and\nconverted to -EIO when passing through the nilfs2 bmap layer."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:00:39.824Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b67189690eb4b7ecc84ae16fa1e880e0123eaa35"
        },
        {
          "url": "https://git.kernel.org/stable/c/9cbe1ad5f4354f4df1445e5f4883983328cd6d8e"
        },
        {
          "url": "https://git.kernel.org/stable/c/c3b5c5c31e723b568f83d8cafab8629d9d830ffb"
        },
        {
          "url": "https://git.kernel.org/stable/c/2e2619ff5d0def4bb6c2037a32a6eaa28dd95c84"
        },
        {
          "url": "https://git.kernel.org/stable/c/46b832e09d43b394ac0f6d9485d2b1a06593f0b7"
        },
        {
          "url": "https://git.kernel.org/stable/c/f69e81396aea66304d214f175aa371f1b5578862"
        },
        {
          "url": "https://git.kernel.org/stable/c/a8e4d098de1c0f4c5c1f2ed4633a860f0da6d713"
        },
        {
          "url": "https://git.kernel.org/stable/c/82827ca21e7c8a91384c5baa656f78a5adfa4ab4"
        },
        {
          "url": "https://git.kernel.org/stable/c/f2f26b4a84a0ef41791bd2d70861c8eac748f4ba"
        }
      ],
      "title": "nilfs2: fix failure to detect DAT corruption in btree and direct mappings",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26956",
    "datePublished": "2024-05-01T05:18:56.101Z",
    "dateReserved": "2024-02-19T14:20:24.200Z",
    "dateUpdated": "2025-05-04T09:00:39.824Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48663 (GCVE-0-2022-48663)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: gpio: mockup: fix NULL pointer dereference when removing debugfs We now remove the device's debugfs entries when unbinding the driver. This now causes a NULL-pointer dereference on module exit because the platform devices are unregistered *after* the global debugfs directory has been recursively removed. Fix it by unregistering the devices first.

References

►

URL

Tags

	https://git.kernel.org/stable/c/bdea98b98f844bd8a983ca880893e509a8b4162f
	https://git.kernel.org/stable/c/18352095a0d581f6aeb1e9fc9d68cc0152cd64b4
	https://git.kernel.org/stable/c/af0bfabf06c74c260265c30ba81a34e7dec0e881
	https://git.kernel.org/stable/c/b7df41a6f79dfb18ba2203f8c5f0e9c0b9b57f68

Impacted products

Vendor

Product

Version

►

Linux

Version: 3815e66c2183f3430490e450ba16779cf5214ec6
Version: 3a10e8edee2b45a654f1f7b05f747129ec84cf9d
Version: bc55c1677edbe86a1c66a35e800df47dff16ad61
Version: 303e6da99429510b1e4edf833afe90ac8542e747

Linux

Version: 5.10.144   ≤
Version: 5.15.69   ≤
Version: 5.19.10   ≤

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.854Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bdea98b98f844bd8a983ca880893e509a8b4162f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/18352095a0d581f6aeb1e9fc9d68cc0152cd64b4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/af0bfabf06c74c260265c30ba81a34e7dec0e881"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b7df41a6f79dfb18ba2203f8c5f0e9c0b9b57f68"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48663",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:45:58.565669Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:54.124Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpio/gpio-mockup.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "bdea98b98f844bd8a983ca880893e509a8b4162f",
              "status": "affected",
              "version": "3815e66c2183f3430490e450ba16779cf5214ec6",
              "versionType": "git"
            },
            {
              "lessThan": "18352095a0d581f6aeb1e9fc9d68cc0152cd64b4",
              "status": "affected",
              "version": "3a10e8edee2b45a654f1f7b05f747129ec84cf9d",
              "versionType": "git"
            },
            {
              "lessThan": "af0bfabf06c74c260265c30ba81a34e7dec0e881",
              "status": "affected",
              "version": "bc55c1677edbe86a1c66a35e800df47dff16ad61",
              "versionType": "git"
            },
            {
              "lessThan": "b7df41a6f79dfb18ba2203f8c5f0e9c0b9b57f68",
              "status": "affected",
              "version": "303e6da99429510b1e4edf833afe90ac8542e747",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpio/gpio-mockup.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "5.10.146",
              "status": "affected",
              "version": "5.10.144",
              "versionType": "semver"
            },
            {
              "lessThan": "5.15.71",
              "status": "affected",
              "version": "5.15.69",
              "versionType": "semver"
            },
            {
              "lessThan": "5.19.12",
              "status": "affected",
              "version": "5.19.10",
              "versionType": "semver"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.10.144",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.15.69",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.19.10",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: mockup: fix NULL pointer dereference when removing debugfs\n\nWe now remove the device\u0027s debugfs entries when unbinding the driver.\nThis now causes a NULL-pointer dereference on module exit because the\nplatform devices are unregistered *after* the global debugfs directory\nhas been recursively removed. Fix it by unregistering the devices first."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:49.260Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/bdea98b98f844bd8a983ca880893e509a8b4162f"
        },
        {
          "url": "https://git.kernel.org/stable/c/18352095a0d581f6aeb1e9fc9d68cc0152cd64b4"
        },
        {
          "url": "https://git.kernel.org/stable/c/af0bfabf06c74c260265c30ba81a34e7dec0e881"
        },
        {
          "url": "https://git.kernel.org/stable/c/b7df41a6f79dfb18ba2203f8c5f0e9c0b9b57f68"
        }
      ],
      "title": "gpio: mockup: fix NULL pointer dereference when removing debugfs",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48663",
    "datePublished": "2024-04-28T13:01:36.158Z",
    "dateReserved": "2024-02-25T13:44:28.320Z",
    "dateUpdated": "2025-05-04T08:20:49.260Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48651 (GCVE-0-2022-48651)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 08:20

Severity ?

7.7 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header If an AF_PACKET socket is used to send packets through ipvlan and the default xmit function of the AF_PACKET socket is changed from dev_queue_xmit() to packet_direct_xmit() via setsockopt() with the option name of PACKET_QDISC_BYPASS, the skb->mac_header may not be reset and remains as the initial value of 65535, this may trigger slab-out-of-bounds bugs as following: ================================================================= UG: KASAN: slab-out-of-bounds in ipvlan_xmit_mode_l2+0xdb/0x330 [ipvlan] PU: 2 PID: 1768 Comm: raw_send Kdump: loaded Not tainted 6.0.0-rc4+ #6 ardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-1.fc33 all Trace: print_address_description.constprop.0+0x1d/0x160 print_report.cold+0x4f/0x112 kasan_report+0xa3/0x130 ipvlan_xmit_mode_l2+0xdb/0x330 [ipvlan] ipvlan_start_xmit+0x29/0xa0 [ipvlan] __dev_direct_xmit+0x2e2/0x380 packet_direct_xmit+0x22/0x60 packet_snd+0x7c9/0xc40 sock_sendmsg+0x9a/0xa0 __sys_sendto+0x18a/0x230 __x64_sys_sendto+0x74/0x90 do_syscall_64+0x3b/0x90 entry_SYSCALL_64_after_hwframe+0x63/0xcd The root cause is: 1. packet_snd() only reset skb->mac_header when sock->type is SOCK_RAW and skb->protocol is not specified as in packet_parse_headers() 2. packet_direct_xmit() doesn't reset skb->mac_header as dev_queue_xmit() In this case, skb->mac_header is 65535 when ipvlan_xmit_mode_l2() is called. So when ipvlan_xmit_mode_l2() gets mac header with eth_hdr() which use "skb->head + skb->mac_header", out-of-bound access occurs. This patch replaces eth_hdr() with skb_eth_hdr() in ipvlan_xmit_mode_l2() and reset mac header in multicast to solve this out-of-bound bug.

References

►

URL

Tags

	https://git.kernel.org/stable/c/e2b46cd5796f083e452fbc624f65b80328b0c1a4
	https://git.kernel.org/stable/c/25efdbe5fe542c3063d1948cc4e98abcb57621ca
	https://git.kernel.org/stable/c/bffcdade259c05ab3436b5fab711612093c275ef
	https://git.kernel.org/stable/c/346e94aa4a99378592c46d6a34c72703a32bd5be
	https://git.kernel.org/stable/c/ab4a733874ead120691e8038272d22f8444d3638
	https://git.kernel.org/stable/c/8d06006c7eb75587d986da46c48ba9274f94e8e7
	https://git.kernel.org/stable/c/b583e6b25bf9321c91154f6c78d2173ef12c4241
	https://git.kernel.org/stable/c/81225b2ea161af48e093f58e8dfee6d705b16af4

Impacted products

Vendor

Product

Version

►

Linux

Version: 2ad7bf3638411cb547f2823df08166c13ab04269
Version: 2ad7bf3638411cb547f2823df08166c13ab04269
Version: 2ad7bf3638411cb547f2823df08166c13ab04269
Version: 2ad7bf3638411cb547f2823df08166c13ab04269
Version: 2ad7bf3638411cb547f2823df08166c13ab04269
Version: 2ad7bf3638411cb547f2823df08166c13ab04269
Version: 2ad7bf3638411cb547f2823df08166c13ab04269
Version: 2ad7bf3638411cb547f2823df08166c13ab04269

Linux

Version: 3.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "3.19"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "2ad7bf363841"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.7,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "HIGH",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48651",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-30T15:57:11.904317Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:46.123Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.603Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e2b46cd5796f083e452fbc624f65b80328b0c1a4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/25efdbe5fe542c3063d1948cc4e98abcb57621ca"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bffcdade259c05ab3436b5fab711612093c275ef"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/346e94aa4a99378592c46d6a34c72703a32bd5be"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ab4a733874ead120691e8038272d22f8444d3638"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8d06006c7eb75587d986da46c48ba9274f94e8e7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b583e6b25bf9321c91154f6c78d2173ef12c4241"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/81225b2ea161af48e093f58e8dfee6d705b16af4"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ipvlan/ipvlan_core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e2b46cd5796f083e452fbc624f65b80328b0c1a4",
              "status": "affected",
              "version": "2ad7bf3638411cb547f2823df08166c13ab04269",
              "versionType": "git"
            },
            {
              "lessThan": "25efdbe5fe542c3063d1948cc4e98abcb57621ca",
              "status": "affected",
              "version": "2ad7bf3638411cb547f2823df08166c13ab04269",
              "versionType": "git"
            },
            {
              "lessThan": "bffcdade259c05ab3436b5fab711612093c275ef",
              "status": "affected",
              "version": "2ad7bf3638411cb547f2823df08166c13ab04269",
              "versionType": "git"
            },
            {
              "lessThan": "346e94aa4a99378592c46d6a34c72703a32bd5be",
              "status": "affected",
              "version": "2ad7bf3638411cb547f2823df08166c13ab04269",
              "versionType": "git"
            },
            {
              "lessThan": "ab4a733874ead120691e8038272d22f8444d3638",
              "status": "affected",
              "version": "2ad7bf3638411cb547f2823df08166c13ab04269",
              "versionType": "git"
            },
            {
              "lessThan": "8d06006c7eb75587d986da46c48ba9274f94e8e7",
              "status": "affected",
              "version": "2ad7bf3638411cb547f2823df08166c13ab04269",
              "versionType": "git"
            },
            {
              "lessThan": "b583e6b25bf9321c91154f6c78d2173ef12c4241",
              "status": "affected",
              "version": "2ad7bf3638411cb547f2823df08166c13ab04269",
              "versionType": "git"
            },
            {
              "lessThan": "81225b2ea161af48e093f58e8dfee6d705b16af4",
              "status": "affected",
              "version": "2ad7bf3638411cb547f2823df08166c13ab04269",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ipvlan/ipvlan_core.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.19"
            },
            {
              "lessThan": "3.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.330",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.295",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.260",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.330",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.295",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.260",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "3.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nipvlan: Fix out-of-bound bugs caused by unset skb-\u003emac_header\n\nIf an AF_PACKET socket is used to send packets through ipvlan and the\ndefault xmit function of the AF_PACKET socket is changed from\ndev_queue_xmit() to packet_direct_xmit() via setsockopt() with the option\nname of PACKET_QDISC_BYPASS, the skb-\u003emac_header may not be reset and\nremains as the initial value of 65535, this may trigger slab-out-of-bounds\nbugs as following:\n\n=================================================================\nUG: KASAN: slab-out-of-bounds in ipvlan_xmit_mode_l2+0xdb/0x330 [ipvlan]\nPU: 2 PID: 1768 Comm: raw_send Kdump: loaded Not tainted 6.0.0-rc4+ #6\nardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.14.0-1.fc33\nall Trace:\nprint_address_description.constprop.0+0x1d/0x160\nprint_report.cold+0x4f/0x112\nkasan_report+0xa3/0x130\nipvlan_xmit_mode_l2+0xdb/0x330 [ipvlan]\nipvlan_start_xmit+0x29/0xa0 [ipvlan]\n__dev_direct_xmit+0x2e2/0x380\npacket_direct_xmit+0x22/0x60\npacket_snd+0x7c9/0xc40\nsock_sendmsg+0x9a/0xa0\n__sys_sendto+0x18a/0x230\n__x64_sys_sendto+0x74/0x90\ndo_syscall_64+0x3b/0x90\nentry_SYSCALL_64_after_hwframe+0x63/0xcd\n\nThe root cause is:\n  1. packet_snd() only reset skb-\u003emac_header when sock-\u003etype is SOCK_RAW\n     and skb-\u003eprotocol is not specified as in packet_parse_headers()\n\n  2. packet_direct_xmit() doesn\u0027t reset skb-\u003emac_header as dev_queue_xmit()\n\nIn this case, skb-\u003emac_header is 65535 when ipvlan_xmit_mode_l2() is\ncalled. So when ipvlan_xmit_mode_l2() gets mac header with eth_hdr() which\nuse \"skb-\u003ehead + skb-\u003emac_header\", out-of-bound access occurs.\n\nThis patch replaces eth_hdr() with skb_eth_hdr() in ipvlan_xmit_mode_l2()\nand reset mac header in multicast to solve this out-of-bound bug."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:35.610Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e2b46cd5796f083e452fbc624f65b80328b0c1a4"
        },
        {
          "url": "https://git.kernel.org/stable/c/25efdbe5fe542c3063d1948cc4e98abcb57621ca"
        },
        {
          "url": "https://git.kernel.org/stable/c/bffcdade259c05ab3436b5fab711612093c275ef"
        },
        {
          "url": "https://git.kernel.org/stable/c/346e94aa4a99378592c46d6a34c72703a32bd5be"
        },
        {
          "url": "https://git.kernel.org/stable/c/ab4a733874ead120691e8038272d22f8444d3638"
        },
        {
          "url": "https://git.kernel.org/stable/c/8d06006c7eb75587d986da46c48ba9274f94e8e7"
        },
        {
          "url": "https://git.kernel.org/stable/c/b583e6b25bf9321c91154f6c78d2173ef12c4241"
        },
        {
          "url": "https://git.kernel.org/stable/c/81225b2ea161af48e093f58e8dfee6d705b16af4"
        }
      ],
      "title": "ipvlan: Fix out-of-bound bugs caused by unset skb-\u003emac_header",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48651",
    "datePublished": "2024-04-28T13:00:42.929Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:35.610Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52614 (GCVE-0-2023-52614)

Vulnerability from cvelistv5

Published

2024-03-18 10:14

Modified

2025-05-04 07:39

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix buffer overflow in trans_stat_show Fix buffer overflow in trans_stat_show(). Convert simple snprintf to the more secure scnprintf with size of PAGE_SIZE. Add condition checking if we are exceeding PAGE_SIZE and exit early from loop. Also add at the end a warning that we exceeded PAGE_SIZE and that stats is disabled. Return -EFBIG in the case where we don't have enough space to write the full transition table. Also document in the ABI that this function can return -EFBIG error.

References

►

URL

Tags

	https://git.kernel.org/stable/c/087de000e4f8c878c81d9dd3725f00a1d292980c
	https://git.kernel.org/stable/c/796d3fad8c35ee9df9027899fb90ceaeb41b958f
	https://git.kernel.org/stable/c/8a7729cda2dd276d7a3994638038fb89035b6f2c
	https://git.kernel.org/stable/c/a979f56aa4b93579cf0e4265ae04d7e9300fd3e8
	https://git.kernel.org/stable/c/eaef4650fa2050147ca25fd7ee43bc0082e03c87
	https://git.kernel.org/stable/c/08e23d05fa6dc4fc13da0ccf09defdd4bbc92ff4

Impacted products

Vendor

Product

Version

►

Linux

Version: e552bbaf5b987f57c43e6981a452b8a3c700b1ae
Version: e552bbaf5b987f57c43e6981a452b8a3c700b1ae
Version: e552bbaf5b987f57c43e6981a452b8a3c700b1ae
Version: e552bbaf5b987f57c43e6981a452b8a3c700b1ae
Version: e552bbaf5b987f57c43e6981a452b8a3c700b1ae
Version: e552bbaf5b987f57c43e6981a452b8a3c700b1ae

Linux

Version: 3.8

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52614",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-18T15:34:29.560131Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-07T19:25:57.982Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.314Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/087de000e4f8c878c81d9dd3725f00a1d292980c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/796d3fad8c35ee9df9027899fb90ceaeb41b958f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8a7729cda2dd276d7a3994638038fb89035b6f2c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a979f56aa4b93579cf0e4265ae04d7e9300fd3e8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/eaef4650fa2050147ca25fd7ee43bc0082e03c87"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/08e23d05fa6dc4fc13da0ccf09defdd4bbc92ff4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "Documentation/ABI/testing/sysfs-class-devfreq",
            "drivers/devfreq/devfreq.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "087de000e4f8c878c81d9dd3725f00a1d292980c",
              "status": "affected",
              "version": "e552bbaf5b987f57c43e6981a452b8a3c700b1ae",
              "versionType": "git"
            },
            {
              "lessThan": "796d3fad8c35ee9df9027899fb90ceaeb41b958f",
              "status": "affected",
              "version": "e552bbaf5b987f57c43e6981a452b8a3c700b1ae",
              "versionType": "git"
            },
            {
              "lessThan": "8a7729cda2dd276d7a3994638038fb89035b6f2c",
              "status": "affected",
              "version": "e552bbaf5b987f57c43e6981a452b8a3c700b1ae",
              "versionType": "git"
            },
            {
              "lessThan": "a979f56aa4b93579cf0e4265ae04d7e9300fd3e8",
              "status": "affected",
              "version": "e552bbaf5b987f57c43e6981a452b8a3c700b1ae",
              "versionType": "git"
            },
            {
              "lessThan": "eaef4650fa2050147ca25fd7ee43bc0082e03c87",
              "status": "affected",
              "version": "e552bbaf5b987f57c43e6981a452b8a3c700b1ae",
              "versionType": "git"
            },
            {
              "lessThan": "08e23d05fa6dc4fc13da0ccf09defdd4bbc92ff4",
              "status": "affected",
              "version": "e552bbaf5b987f57c43e6981a452b8a3c700b1ae",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "Documentation/ABI/testing/sysfs-class-devfreq",
            "drivers/devfreq/devfreq.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.8"
            },
            {
              "lessThan": "3.8",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.216",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.76",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.15",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.216",
                  "versionStartIncluding": "3.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "3.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.76",
                  "versionStartIncluding": "3.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.15",
                  "versionStartIncluding": "3.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.3",
                  "versionStartIncluding": "3.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "3.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nPM / devfreq: Fix buffer overflow in trans_stat_show\n\nFix buffer overflow in trans_stat_show().\n\nConvert simple snprintf to the more secure scnprintf with size of\nPAGE_SIZE.\n\nAdd condition checking if we are exceeding PAGE_SIZE and exit early from\nloop. Also add at the end a warning that we exceeded PAGE_SIZE and that\nstats is disabled.\n\nReturn -EFBIG in the case where we don\u0027t have enough space to write the\nfull transition table.\n\nAlso document in the ABI that this function can return -EFBIG error."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:39:54.692Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/087de000e4f8c878c81d9dd3725f00a1d292980c"
        },
        {
          "url": "https://git.kernel.org/stable/c/796d3fad8c35ee9df9027899fb90ceaeb41b958f"
        },
        {
          "url": "https://git.kernel.org/stable/c/8a7729cda2dd276d7a3994638038fb89035b6f2c"
        },
        {
          "url": "https://git.kernel.org/stable/c/a979f56aa4b93579cf0e4265ae04d7e9300fd3e8"
        },
        {
          "url": "https://git.kernel.org/stable/c/eaef4650fa2050147ca25fd7ee43bc0082e03c87"
        },
        {
          "url": "https://git.kernel.org/stable/c/08e23d05fa6dc4fc13da0ccf09defdd4bbc92ff4"
        }
      ],
      "title": "PM / devfreq: Fix buffer overflow in trans_stat_show",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52614",
    "datePublished": "2024-03-18T10:14:44.929Z",
    "dateReserved": "2024-03-06T09:52:12.089Z",
    "dateUpdated": "2025-05-04T07:39:54.692Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26857 (GCVE-0-2024-26857)

Vulnerability from cvelistv5

Published

2024-04-17 10:17

Modified

2025-05-04 08:58

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: geneve: make sure to pull inner header in geneve_rx() syzbot triggered a bug in geneve_rx() [1] Issue is similar to the one I fixed in commit 8d975c15c0cd ("ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()") We have to save skb->network_header in a temporary variable in order to be able to recompute the network_header pointer after a pskb_inet_may_pull() call. pskb_inet_may_pull() makes sure the needed headers are in skb->head. [1] BUG: KMSAN: uninit-value in IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline] BUG: KMSAN: uninit-value in geneve_rx drivers/net/geneve.c:279 [inline] BUG: KMSAN: uninit-value in geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391 IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline] geneve_rx drivers/net/geneve.c:279 [inline] geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391 udp_queue_rcv_one_skb+0x1d39/0x1f20 net/ipv4/udp.c:2108 udp_queue_rcv_skb+0x6ae/0x6e0 net/ipv4/udp.c:2186 udp_unicast_rcv_skb+0x184/0x4b0 net/ipv4/udp.c:2346 __udp4_lib_rcv+0x1c6b/0x3010 net/ipv4/udp.c:2422 udp_rcv+0x7d/0xa0 net/ipv4/udp.c:2604 ip_protocol_deliver_rcu+0x264/0x1300 net/ipv4/ip_input.c:205 ip_local_deliver_finish+0x2b8/0x440 net/ipv4/ip_input.c:233 NF_HOOK include/linux/netfilter.h:314 [inline] ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254 dst_input include/net/dst.h:461 [inline] ip_rcv_finish net/ipv4/ip_input.c:449 [inline] NF_HOOK include/linux/netfilter.h:314 [inline] ip_rcv+0x46f/0x760 net/ipv4/ip_input.c:569 __netif_receive_skb_one_core net/core/dev.c:5534 [inline] __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5648 process_backlog+0x480/0x8b0 net/core/dev.c:5976 __napi_poll+0xe3/0x980 net/core/dev.c:6576 napi_poll net/core/dev.c:6645 [inline] net_rx_action+0x8b8/0x1870 net/core/dev.c:6778 __do_softirq+0x1b7/0x7c5 kernel/softirq.c:553 do_softirq+0x9a/0xf0 kernel/softirq.c:454 __local_bh_enable_ip+0x9b/0xa0 kernel/softirq.c:381 local_bh_enable include/linux/bottom_half.h:33 [inline] rcu_read_unlock_bh include/linux/rcupdate.h:820 [inline] __dev_queue_xmit+0x2768/0x51c0 net/core/dev.c:4378 dev_queue_xmit include/linux/netdevice.h:3171 [inline] packet_xmit+0x9c/0x6b0 net/packet/af_packet.c:276 packet_snd net/packet/af_packet.c:3081 [inline] packet_sendmsg+0x8aef/0x9f10 net/packet/af_packet.c:3113 sock_sendmsg_nosec net/socket.c:730 [inline] __sock_sendmsg net/socket.c:745 [inline] __sys_sendto+0x735/0xa10 net/socket.c:2191 __do_sys_sendto net/socket.c:2203 [inline] __se_sys_sendto net/socket.c:2199 [inline] __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x63/0x6b Uninit was created at: slab_post_alloc_hook mm/slub.c:3819 [inline] slab_alloc_node mm/slub.c:3860 [inline] kmem_cache_alloc_node+0x5cb/0xbc0 mm/slub.c:3903 kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560 __alloc_skb+0x352/0x790 net/core/skbuff.c:651 alloc_skb include/linux/skbuff.h:1296 [inline] alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6394 sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2783 packet_alloc_skb net/packet/af_packet.c:2930 [inline] packet_snd net/packet/af_packet.c:3024 [inline] packet_sendmsg+0x70c2/0x9f10 net/packet/af_packet.c:3113 sock_sendmsg_nosec net/socket.c:730 [inline] __sock_sendmsg net/socket.c:745 [inline] __sys_sendto+0x735/0xa10 net/socket.c:2191 __do_sys_sendto net/socket.c:2203 [inline] __se_sys_sendto net/socket.c:2199 [inline] __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x63/0x6b

References

►

URL

Tags

	https://git.kernel.org/stable/c/e431c3227864b5646601c97f5f898d99472f2914
	https://git.kernel.org/stable/c/59d2a4076983303f324557a114cfd5c32e1f6b29
	https://git.kernel.org/stable/c/c7137900691f5692fe3de54566ea7b30bb35d66c
	https://git.kernel.org/stable/c/e77e0b0f2a11735c64b105edaee54d6344faca8a
	https://git.kernel.org/stable/c/c0b22568a9d8384fd000cc49acb8f74bde40d1b5
	https://git.kernel.org/stable/c/0ece581d2a66e8e488c0d3b3e7b5760dbbfdbdd5
	https://git.kernel.org/stable/c/048e16dee1fc609c1c85072ccd70bfd4b5fef6ca
	https://git.kernel.org/stable/c/1ca1ba465e55b9460e4e75dec9fff31e708fec74

Impacted products

Vendor

Product

Version

►

Linux

Version: 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b
Version: 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b
Version: 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b
Version: 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b
Version: 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b
Version: 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b
Version: 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b
Version: 2d07dc79fe04a43d82a346ced6bbf07bdb523f1b

Linux

Version: 4.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26857",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T17:32:22.775976Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-06T16:53:14.290Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.648Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e431c3227864b5646601c97f5f898d99472f2914"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/59d2a4076983303f324557a114cfd5c32e1f6b29"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c7137900691f5692fe3de54566ea7b30bb35d66c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e77e0b0f2a11735c64b105edaee54d6344faca8a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c0b22568a9d8384fd000cc49acb8f74bde40d1b5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0ece581d2a66e8e488c0d3b3e7b5760dbbfdbdd5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/048e16dee1fc609c1c85072ccd70bfd4b5fef6ca"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1ca1ba465e55b9460e4e75dec9fff31e708fec74"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/geneve.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e431c3227864b5646601c97f5f898d99472f2914",
              "status": "affected",
              "version": "2d07dc79fe04a43d82a346ced6bbf07bdb523f1b",
              "versionType": "git"
            },
            {
              "lessThan": "59d2a4076983303f324557a114cfd5c32e1f6b29",
              "status": "affected",
              "version": "2d07dc79fe04a43d82a346ced6bbf07bdb523f1b",
              "versionType": "git"
            },
            {
              "lessThan": "c7137900691f5692fe3de54566ea7b30bb35d66c",
              "status": "affected",
              "version": "2d07dc79fe04a43d82a346ced6bbf07bdb523f1b",
              "versionType": "git"
            },
            {
              "lessThan": "e77e0b0f2a11735c64b105edaee54d6344faca8a",
              "status": "affected",
              "version": "2d07dc79fe04a43d82a346ced6bbf07bdb523f1b",
              "versionType": "git"
            },
            {
              "lessThan": "c0b22568a9d8384fd000cc49acb8f74bde40d1b5",
              "status": "affected",
              "version": "2d07dc79fe04a43d82a346ced6bbf07bdb523f1b",
              "versionType": "git"
            },
            {
              "lessThan": "0ece581d2a66e8e488c0d3b3e7b5760dbbfdbdd5",
              "status": "affected",
              "version": "2d07dc79fe04a43d82a346ced6bbf07bdb523f1b",
              "versionType": "git"
            },
            {
              "lessThan": "048e16dee1fc609c1c85072ccd70bfd4b5fef6ca",
              "status": "affected",
              "version": "2d07dc79fe04a43d82a346ced6bbf07bdb523f1b",
              "versionType": "git"
            },
            {
              "lessThan": "1ca1ba465e55b9460e4e75dec9fff31e708fec74",
              "status": "affected",
              "version": "2d07dc79fe04a43d82a346ced6bbf07bdb523f1b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/geneve.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.2"
            },
            {
              "lessThan": "4.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.310",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.272",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.152",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.22",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.10",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.310",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.272",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.213",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.152",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.82",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.22",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.10",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "4.2",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ngeneve: make sure to pull inner header in geneve_rx()\n\nsyzbot triggered a bug in geneve_rx() [1]\n\nIssue is similar to the one I fixed in commit 8d975c15c0cd\n(\"ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()\")\n\nWe have to save skb-\u003enetwork_header in a temporary variable\nin order to be able to recompute the network_header pointer\nafter a pskb_inet_may_pull() call.\n\npskb_inet_may_pull() makes sure the needed headers are in skb-\u003ehead.\n\n[1]\nBUG: KMSAN: uninit-value in IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n BUG: KMSAN: uninit-value in geneve_rx drivers/net/geneve.c:279 [inline]\n BUG: KMSAN: uninit-value in geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391\n  IP_ECN_decapsulate include/net/inet_ecn.h:302 [inline]\n  geneve_rx drivers/net/geneve.c:279 [inline]\n  geneve_udp_encap_recv+0x36f9/0x3c10 drivers/net/geneve.c:391\n  udp_queue_rcv_one_skb+0x1d39/0x1f20 net/ipv4/udp.c:2108\n  udp_queue_rcv_skb+0x6ae/0x6e0 net/ipv4/udp.c:2186\n  udp_unicast_rcv_skb+0x184/0x4b0 net/ipv4/udp.c:2346\n  __udp4_lib_rcv+0x1c6b/0x3010 net/ipv4/udp.c:2422\n  udp_rcv+0x7d/0xa0 net/ipv4/udp.c:2604\n  ip_protocol_deliver_rcu+0x264/0x1300 net/ipv4/ip_input.c:205\n  ip_local_deliver_finish+0x2b8/0x440 net/ipv4/ip_input.c:233\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip_local_deliver+0x21f/0x490 net/ipv4/ip_input.c:254\n  dst_input include/net/dst.h:461 [inline]\n  ip_rcv_finish net/ipv4/ip_input.c:449 [inline]\n  NF_HOOK include/linux/netfilter.h:314 [inline]\n  ip_rcv+0x46f/0x760 net/ipv4/ip_input.c:569\n  __netif_receive_skb_one_core net/core/dev.c:5534 [inline]\n  __netif_receive_skb+0x1a6/0x5a0 net/core/dev.c:5648\n  process_backlog+0x480/0x8b0 net/core/dev.c:5976\n  __napi_poll+0xe3/0x980 net/core/dev.c:6576\n  napi_poll net/core/dev.c:6645 [inline]\n  net_rx_action+0x8b8/0x1870 net/core/dev.c:6778\n  __do_softirq+0x1b7/0x7c5 kernel/softirq.c:553\n  do_softirq+0x9a/0xf0 kernel/softirq.c:454\n  __local_bh_enable_ip+0x9b/0xa0 kernel/softirq.c:381\n  local_bh_enable include/linux/bottom_half.h:33 [inline]\n  rcu_read_unlock_bh include/linux/rcupdate.h:820 [inline]\n  __dev_queue_xmit+0x2768/0x51c0 net/core/dev.c:4378\n  dev_queue_xmit include/linux/netdevice.h:3171 [inline]\n  packet_xmit+0x9c/0x6b0 net/packet/af_packet.c:276\n  packet_snd net/packet/af_packet.c:3081 [inline]\n  packet_sendmsg+0x8aef/0x9f10 net/packet/af_packet.c:3113\n  sock_sendmsg_nosec net/socket.c:730 [inline]\n  __sock_sendmsg net/socket.c:745 [inline]\n  __sys_sendto+0x735/0xa10 net/socket.c:2191\n  __do_sys_sendto net/socket.c:2203 [inline]\n  __se_sys_sendto net/socket.c:2199 [inline]\n  __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b\n\nUninit was created at:\n  slab_post_alloc_hook mm/slub.c:3819 [inline]\n  slab_alloc_node mm/slub.c:3860 [inline]\n  kmem_cache_alloc_node+0x5cb/0xbc0 mm/slub.c:3903\n  kmalloc_reserve+0x13d/0x4a0 net/core/skbuff.c:560\n  __alloc_skb+0x352/0x790 net/core/skbuff.c:651\n  alloc_skb include/linux/skbuff.h:1296 [inline]\n  alloc_skb_with_frags+0xc8/0xbd0 net/core/skbuff.c:6394\n  sock_alloc_send_pskb+0xa80/0xbf0 net/core/sock.c:2783\n  packet_alloc_skb net/packet/af_packet.c:2930 [inline]\n  packet_snd net/packet/af_packet.c:3024 [inline]\n  packet_sendmsg+0x70c2/0x9f10 net/packet/af_packet.c:3113\n  sock_sendmsg_nosec net/socket.c:730 [inline]\n  __sock_sendmsg net/socket.c:745 [inline]\n  __sys_sendto+0x735/0xa10 net/socket.c:2191\n  __do_sys_sendto net/socket.c:2203 [inline]\n  __se_sys_sendto net/socket.c:2199 [inline]\n  __x64_sys_sendto+0x125/0x1c0 net/socket.c:2199\n  do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n  do_syscall_64+0xcf/0x1e0 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x63/0x6b"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:58:06.505Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e431c3227864b5646601c97f5f898d99472f2914"
        },
        {
          "url": "https://git.kernel.org/stable/c/59d2a4076983303f324557a114cfd5c32e1f6b29"
        },
        {
          "url": "https://git.kernel.org/stable/c/c7137900691f5692fe3de54566ea7b30bb35d66c"
        },
        {
          "url": "https://git.kernel.org/stable/c/e77e0b0f2a11735c64b105edaee54d6344faca8a"
        },
        {
          "url": "https://git.kernel.org/stable/c/c0b22568a9d8384fd000cc49acb8f74bde40d1b5"
        },
        {
          "url": "https://git.kernel.org/stable/c/0ece581d2a66e8e488c0d3b3e7b5760dbbfdbdd5"
        },
        {
          "url": "https://git.kernel.org/stable/c/048e16dee1fc609c1c85072ccd70bfd4b5fef6ca"
        },
        {
          "url": "https://git.kernel.org/stable/c/1ca1ba465e55b9460e4e75dec9fff31e708fec74"
        }
      ],
      "title": "geneve: make sure to pull inner header in geneve_rx()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26857",
    "datePublished": "2024-04-17T10:17:19.115Z",
    "dateReserved": "2024-02-19T14:20:24.183Z",
    "dateUpdated": "2025-05-04T08:58:06.505Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26979 (GCVE-0-2024-26979)

Vulnerability from cvelistv5

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "providerMetadata": {
        "dateUpdated": "2024-06-12T15:58:08.674Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "rejectedReasons": [
        {
          "lang": "en",
          "value": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority."
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26979",
    "datePublished": "2024-05-01T05:20:38.304Z",
    "dateRejected": "2024-06-12T15:58:08.674Z",
    "dateReserved": "2024-02-19T14:20:24.203Z",
    "dateUpdated": "2024-06-12T15:58:08.674Z",
    "state": "REJECTED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47200 (GCVE-0-2021-47200)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap drm_gem_ttm_mmap() drops a reference to the gem object on success. If the gem object's refcount == 1 on entry to drm_gem_prime_mmap(), that drop will free the gem object, and the subsequent drm_gem_object_get() will be a UAF. Fix by grabbing a reference before calling the mmap helper. This issue was forseen when the reference dropping was adding in commit 9786b65bc61ac ("drm/ttm: fix mmap refcounting"): "For that to work properly the drm_gem_object_get() call in drm_gem_ttm_mmap() must be moved so it happens before calling obj->funcs->mmap(), otherwise the gem refcount would go down to zero."

References

►

URL

Tags

	https://git.kernel.org/stable/c/4f8e469a2384dfa4047145b0093126462cbb6dc0
	https://git.kernel.org/stable/c/8244a3bc27b3efd057da154b8d7e414670d5044f

Impacted products

Vendor

Product

Version

►

Linux

Version: 9786b65bc61acec63f923978c75e707afbb74bc7
Version: 9786b65bc61acec63f923978c75e707afbb74bc7

Linux

Version: 5.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47200",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-15T14:57:54.210831Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-03T17:48:37.560Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.374Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4f8e469a2384dfa4047145b0093126462cbb6dc0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8244a3bc27b3efd057da154b8d7e414670d5044f"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/drm_prime.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "4f8e469a2384dfa4047145b0093126462cbb6dc0",
              "status": "affected",
              "version": "9786b65bc61acec63f923978c75e707afbb74bc7",
              "versionType": "git"
            },
            {
              "lessThan": "8244a3bc27b3efd057da154b8d7e414670d5044f",
              "status": "affected",
              "version": "9786b65bc61acec63f923978c75e707afbb74bc7",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/drm_prime.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.5"
            },
            {
              "lessThan": "5.5",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/prime: Fix use after free in mmap with drm_gem_ttm_mmap\n\ndrm_gem_ttm_mmap() drops a reference to the gem object on success. If\nthe gem object\u0027s refcount == 1 on entry to drm_gem_prime_mmap(), that\ndrop will free the gem object, and the subsequent drm_gem_object_get()\nwill be a UAF. Fix by grabbing a reference before calling the mmap\nhelper.\n\nThis issue was forseen when the reference dropping was adding in\ncommit 9786b65bc61ac (\"drm/ttm: fix mmap refcounting\"):\n  \"For that to work properly the drm_gem_object_get() call in\n  drm_gem_ttm_mmap() must be moved so it happens before calling\n  obj-\u003efuncs-\u003emmap(), otherwise the gem refcount would go down\n  to zero.\""
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:15.756Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/4f8e469a2384dfa4047145b0093126462cbb6dc0"
        },
        {
          "url": "https://git.kernel.org/stable/c/8244a3bc27b3efd057da154b8d7e414670d5044f"
        }
      ],
      "title": "drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47200",
    "datePublished": "2024-04-10T18:56:35.152Z",
    "dateReserved": "2024-03-25T09:12:14.117Z",
    "dateUpdated": "2025-05-04T07:06:15.756Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26792 (GCVE-0-2024-26792)

Vulnerability from cvelistv5

Published

2024-04-04 08:20

Modified

2025-05-04 12:54

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free of anonymous device after snapshot creation failure When creating a snapshot we may do a double free of an anonymous device in case there's an error committing the transaction. The second free may result in freeing an anonymous device number that was allocated by some other subsystem in the kernel or another btrfs filesystem. The steps that lead to this: 1) At ioctl.c:create_snapshot() we allocate an anonymous device number and assign it to pending_snapshot->anon_dev; 2) Then we call btrfs_commit_transaction() and end up at transaction.c:create_pending_snapshot(); 3) There we call btrfs_get_new_fs_root() and pass it the anonymous device number stored in pending_snapshot->anon_dev; 4) btrfs_get_new_fs_root() frees that anonymous device number because btrfs_lookup_fs_root() returned a root - someone else did a lookup of the new root already, which could some task doing backref walking; 5) After that some error happens in the transaction commit path, and at ioctl.c:create_snapshot() we jump to the 'fail' label, and after that we free again the same anonymous device number, which in the meanwhile may have been reallocated somewhere else, because pending_snapshot->anon_dev still has the same value as in step 1. Recently syzbot ran into this and reported the following trace: ------------[ cut here ]------------ ida_free called for id=51 which is not allocated. WARNING: CPU: 1 PID: 31038 at lib/idr.c:525 ida_free+0x370/0x420 lib/idr.c:525 Modules linked in: CPU: 1 PID: 31038 Comm: syz-executor.2 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 RIP: 0010:ida_free+0x370/0x420 lib/idr.c:525 Code: 10 42 80 3c 28 (...) RSP: 0018:ffffc90015a67300 EFLAGS: 00010246 RAX: be5130472f5dd000 RBX: 0000000000000033 RCX: 0000000000040000 RDX: ffffc90009a7a000 RSI: 000000000003ffff RDI: 0000000000040000 RBP: ffffc90015a673f0 R08: ffffffff81577992 R09: 1ffff92002b4cdb4 R10: dffffc0000000000 R11: fffff52002b4cdb5 R12: 0000000000000246 R13: dffffc0000000000 R14: ffffffff8e256b80 R15: 0000000000000246 FS: 00007fca3f4b46c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f167a17b978 CR3: 000000001ed26000 CR4: 0000000000350ef0 Call Trace: <TASK> btrfs_get_root_ref+0xa48/0xaf0 fs/btrfs/disk-io.c:1346 create_pending_snapshot+0xff2/0x2bc0 fs/btrfs/transaction.c:1837 create_pending_snapshots+0x195/0x1d0 fs/btrfs/transaction.c:1931 btrfs_commit_transaction+0xf1c/0x3740 fs/btrfs/transaction.c:2404 create_snapshot+0x507/0x880 fs/btrfs/ioctl.c:848 btrfs_mksubvol+0x5d0/0x750 fs/btrfs/ioctl.c:998 btrfs_mksnapshot+0xb5/0xf0 fs/btrfs/ioctl.c:1044 __btrfs_ioctl_snap_create+0x387/0x4b0 fs/btrfs/ioctl.c:1306 btrfs_ioctl_snap_create_v2+0x1ca/0x400 fs/btrfs/ioctl.c:1393 btrfs_ioctl+0xa74/0xd40 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:871 [inline] __se_sys_ioctl+0xfe/0x170 fs/ioctl.c:857 do_syscall_64+0xfb/0x240 entry_SYSCALL_64_after_hwframe+0x6f/0x77 RIP: 0033:0x7fca3e67dda9 Code: 28 00 00 00 (...) RSP: 002b:00007fca3f4b40c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007fca3e7abf80 RCX: 00007fca3e67dda9 RDX: 00000000200005c0 RSI: 0000000050009417 RDI: 0000000000000003 RBP: 00007fca3e6ca47a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 000000000000000b R14: 00007fca3e7abf80 R15: 00007fff6bf95658 </TASK> Where we get an explicit message where we attempt to free an anonymous device number that is not currently allocated. It happens in a different code path from the example below, at btrfs_get_root_ref(), so this change may not fix the case triggered by sy ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/c34adc20b91a8e55e048b18d63f4f4ae003ecf8f
	https://git.kernel.org/stable/c/eb3441093aad251418921246fc3b224fd1575701
	https://git.kernel.org/stable/c/c8ab7521665bd0f8bc4a900244d1d5a7095cc3b9
	https://git.kernel.org/stable/c/e2b54eaf28df0c978626c9736b94f003b523b451

Impacted products

Vendor

Product

Version

►

Linux

Version: 66b317a2fc45b2ef66527ee3f8fa08fb5beab88d
Version: 833775656d447c545133a744a0ed1e189ce61430
Version: 5a172344bfdabb46458e03708735d7b1a918c468
Version: e03ee2fe873eb68c1f9ba5112fee70303ebf9dfb
Version: 3f5d47eb163bceb1b9e613c9003bae5fefc0046f
Version: e31546b0f34af21738c4ceac47d662c00ee6382f

Linux

Version: 6.1.79   ≤
Version: 6.6.18   ≤
Version: 6.7.6   ≤

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.341Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c34adc20b91a8e55e048b18d63f4f4ae003ecf8f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/eb3441093aad251418921246fc3b224fd1575701"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c8ab7521665bd0f8bc4a900244d1d5a7095cc3b9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e2b54eaf28df0c978626c9736b94f003b523b451"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26792",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:50:55.740284Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:49.282Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/btrfs/disk-io.c",
            "fs/btrfs/disk-io.h",
            "fs/btrfs/ioctl.c",
            "fs/btrfs/transaction.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "c34adc20b91a8e55e048b18d63f4f4ae003ecf8f",
              "status": "affected",
              "version": "66b317a2fc45b2ef66527ee3f8fa08fb5beab88d",
              "versionType": "git"
            },
            {
              "lessThan": "eb3441093aad251418921246fc3b224fd1575701",
              "status": "affected",
              "version": "833775656d447c545133a744a0ed1e189ce61430",
              "versionType": "git"
            },
            {
              "lessThan": "c8ab7521665bd0f8bc4a900244d1d5a7095cc3b9",
              "status": "affected",
              "version": "5a172344bfdabb46458e03708735d7b1a918c468",
              "versionType": "git"
            },
            {
              "lessThan": "e2b54eaf28df0c978626c9736b94f003b523b451",
              "status": "affected",
              "version": "e03ee2fe873eb68c1f9ba5112fee70303ebf9dfb",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "3f5d47eb163bceb1b9e613c9003bae5fefc0046f",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "e31546b0f34af21738c4ceac47d662c00ee6382f",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/btrfs/disk-io.c",
            "fs/btrfs/disk-io.h",
            "fs/btrfs/ioctl.c",
            "fs/btrfs/transaction.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "6.1.81",
              "status": "affected",
              "version": "6.1.79",
              "versionType": "semver"
            },
            {
              "lessThan": "6.6.21",
              "status": "affected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThan": "6.7.9",
              "status": "affected",
              "version": "6.7.6",
              "versionType": "semver"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.81",
                  "versionStartIncluding": "6.1.79",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.21",
                  "versionStartIncluding": "6.6.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.9",
                  "versionStartIncluding": "6.7.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.10.210",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "5.15.149",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: fix double free of anonymous device after snapshot creation failure\n\nWhen creating a snapshot we may do a double free of an anonymous device\nin case there\u0027s an error committing the transaction. The second free may\nresult in freeing an anonymous device number that was allocated by some\nother subsystem in the kernel or another btrfs filesystem.\n\nThe steps that lead to this:\n\n1) At ioctl.c:create_snapshot() we allocate an anonymous device number\n   and assign it to pending_snapshot-\u003eanon_dev;\n\n2) Then we call btrfs_commit_transaction() and end up at\n   transaction.c:create_pending_snapshot();\n\n3) There we call btrfs_get_new_fs_root() and pass it the anonymous device\n   number stored in pending_snapshot-\u003eanon_dev;\n\n4) btrfs_get_new_fs_root() frees that anonymous device number because\n   btrfs_lookup_fs_root() returned a root - someone else did a lookup\n   of the new root already, which could some task doing backref walking;\n\n5) After that some error happens in the transaction commit path, and at\n   ioctl.c:create_snapshot() we jump to the \u0027fail\u0027 label, and after\n   that we free again the same anonymous device number, which in the\n   meanwhile may have been reallocated somewhere else, because\n   pending_snapshot-\u003eanon_dev still has the same value as in step 1.\n\nRecently syzbot ran into this and reported the following trace:\n\n  ------------[ cut here ]------------\n  ida_free called for id=51 which is not allocated.\n  WARNING: CPU: 1 PID: 31038 at lib/idr.c:525 ida_free+0x370/0x420 lib/idr.c:525\n  Modules linked in:\n  CPU: 1 PID: 31038 Comm: syz-executor.2 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0\n  Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024\n  RIP: 0010:ida_free+0x370/0x420 lib/idr.c:525\n  Code: 10 42 80 3c 28 (...)\n  RSP: 0018:ffffc90015a67300 EFLAGS: 00010246\n  RAX: be5130472f5dd000 RBX: 0000000000000033 RCX: 0000000000040000\n  RDX: ffffc90009a7a000 RSI: 000000000003ffff RDI: 0000000000040000\n  RBP: ffffc90015a673f0 R08: ffffffff81577992 R09: 1ffff92002b4cdb4\n  R10: dffffc0000000000 R11: fffff52002b4cdb5 R12: 0000000000000246\n  R13: dffffc0000000000 R14: ffffffff8e256b80 R15: 0000000000000246\n  FS:  00007fca3f4b46c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000\n  CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n  CR2: 00007f167a17b978 CR3: 000000001ed26000 CR4: 0000000000350ef0\n  Call Trace:\n   \u003cTASK\u003e\n   btrfs_get_root_ref+0xa48/0xaf0 fs/btrfs/disk-io.c:1346\n   create_pending_snapshot+0xff2/0x2bc0 fs/btrfs/transaction.c:1837\n   create_pending_snapshots+0x195/0x1d0 fs/btrfs/transaction.c:1931\n   btrfs_commit_transaction+0xf1c/0x3740 fs/btrfs/transaction.c:2404\n   create_snapshot+0x507/0x880 fs/btrfs/ioctl.c:848\n   btrfs_mksubvol+0x5d0/0x750 fs/btrfs/ioctl.c:998\n   btrfs_mksnapshot+0xb5/0xf0 fs/btrfs/ioctl.c:1044\n   __btrfs_ioctl_snap_create+0x387/0x4b0 fs/btrfs/ioctl.c:1306\n   btrfs_ioctl_snap_create_v2+0x1ca/0x400 fs/btrfs/ioctl.c:1393\n   btrfs_ioctl+0xa74/0xd40\n   vfs_ioctl fs/ioctl.c:51 [inline]\n   __do_sys_ioctl fs/ioctl.c:871 [inline]\n   __se_sys_ioctl+0xfe/0x170 fs/ioctl.c:857\n   do_syscall_64+0xfb/0x240\n   entry_SYSCALL_64_after_hwframe+0x6f/0x77\n  RIP: 0033:0x7fca3e67dda9\n  Code: 28 00 00 00 (...)\n  RSP: 002b:00007fca3f4b40c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010\n  RAX: ffffffffffffffda RBX: 00007fca3e7abf80 RCX: 00007fca3e67dda9\n  RDX: 00000000200005c0 RSI: 0000000050009417 RDI: 0000000000000003\n  RBP: 00007fca3e6ca47a R08: 0000000000000000 R09: 0000000000000000\n  R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000\n  R13: 000000000000000b R14: 00007fca3e7abf80 R15: 00007fff6bf95658\n   \u003c/TASK\u003e\n\nWhere we get an explicit message where we attempt to free an anonymous\ndevice number that is not currently allocated. It happens in a different\ncode path from the example below, at btrfs_get_root_ref(), so this change\nmay not fix the case triggered by sy\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:54:43.345Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/c34adc20b91a8e55e048b18d63f4f4ae003ecf8f"
        },
        {
          "url": "https://git.kernel.org/stable/c/eb3441093aad251418921246fc3b224fd1575701"
        },
        {
          "url": "https://git.kernel.org/stable/c/c8ab7521665bd0f8bc4a900244d1d5a7095cc3b9"
        },
        {
          "url": "https://git.kernel.org/stable/c/e2b54eaf28df0c978626c9736b94f003b523b451"
        }
      ],
      "title": "btrfs: fix double free of anonymous device after snapshot creation failure",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26792",
    "datePublished": "2024-04-04T08:20:23.075Z",
    "dateReserved": "2024-02-19T14:20:24.178Z",
    "dateUpdated": "2025-05-04T12:54:43.345Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47191 (GCVE-0-2021-47191)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: scsi_debug: Fix out-of-bound read in resp_readcap16() The following warning was observed running syzkaller: [ 3813.830724] sg_write: data in/out 65466/242 bytes for SCSI command 0x9e-- guessing data in; [ 3813.830724] program syz-executor not setting count and/or reply_len properly [ 3813.836956] ================================================================== [ 3813.839465] BUG: KASAN: stack-out-of-bounds in sg_copy_buffer+0x157/0x1e0 [ 3813.841773] Read of size 4096 at addr ffff8883cf80f540 by task syz-executor/1549 [ 3813.846612] Call Trace: [ 3813.846995] dump_stack+0x108/0x15f [ 3813.847524] print_address_description+0xa5/0x372 [ 3813.848243] kasan_report.cold+0x236/0x2a8 [ 3813.849439] check_memory_region+0x240/0x270 [ 3813.850094] memcpy+0x30/0x80 [ 3813.850553] sg_copy_buffer+0x157/0x1e0 [ 3813.853032] sg_copy_from_buffer+0x13/0x20 [ 3813.853660] fill_from_dev_buffer+0x135/0x370 [ 3813.854329] resp_readcap16+0x1ac/0x280 [ 3813.856917] schedule_resp+0x41f/0x1630 [ 3813.858203] scsi_debug_queuecommand+0xb32/0x17e0 [ 3813.862699] scsi_dispatch_cmd+0x330/0x950 [ 3813.863329] scsi_request_fn+0xd8e/0x1710 [ 3813.863946] __blk_run_queue+0x10b/0x230 [ 3813.864544] blk_execute_rq_nowait+0x1d8/0x400 [ 3813.865220] sg_common_write.isra.0+0xe61/0x2420 [ 3813.871637] sg_write+0x6c8/0xef0 [ 3813.878853] __vfs_write+0xe4/0x800 [ 3813.883487] vfs_write+0x17b/0x530 [ 3813.884008] ksys_write+0x103/0x270 [ 3813.886268] __x64_sys_write+0x77/0xc0 [ 3813.886841] do_syscall_64+0x106/0x360 [ 3813.887415] entry_SYSCALL_64_after_hwframe+0x44/0xa9 This issue can be reproduced with the following syzkaller log: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fd/3\x00') open_by_handle_at(r1, &(0x7f00000003c0)=ANY=[@ANYRESHEX], 0x602000) r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x40782) write$binfmt_aout(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="00000000deff000000000000000000000000000000000000000000000000000047f007af9e107a41ec395f1bded7be24277a1501ff6196a83366f4e6362bc0ff2b247f68a972989b094b2da4fb3607fcf611a22dd04310d28c75039d"], 0x126) In resp_readcap16() we get "int alloc_len" value -1104926854, and then pass the huge arr_len to fill_from_dev_buffer(), but arr is only 32 bytes. This leads to OOB in sg_copy_buffer(). To solve this issue, define alloc_len as u32.

References

►

URL

Tags

	https://git.kernel.org/stable/c/3e20cb072679bdb47747ccc8bee3233a4cf0765a
	https://git.kernel.org/stable/c/5b8bed6464ad6653586e30df046185fd816ad999
	https://git.kernel.org/stable/c/4e3ace0051e7e504b55d239daab8789dd89b863c

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47191",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T18:03:54.717932Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T18:04:58.134Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.284Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3e20cb072679bdb47747ccc8bee3233a4cf0765a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5b8bed6464ad6653586e30df046185fd816ad999"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4e3ace0051e7e504b55d239daab8789dd89b863c"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/scsi_debug.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "3e20cb072679bdb47747ccc8bee3233a4cf0765a",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5b8bed6464ad6653586e30df046185fd816ad999",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4e3ace0051e7e504b55d239daab8789dd89b863c",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/scsi_debug.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: scsi_debug: Fix out-of-bound read in resp_readcap16()\n\nThe following warning was observed running syzkaller:\n\n[ 3813.830724] sg_write: data in/out 65466/242 bytes for SCSI command 0x9e-- guessing data in;\n[ 3813.830724]    program syz-executor not setting count and/or reply_len properly\n[ 3813.836956] ==================================================================\n[ 3813.839465] BUG: KASAN: stack-out-of-bounds in sg_copy_buffer+0x157/0x1e0\n[ 3813.841773] Read of size 4096 at addr ffff8883cf80f540 by task syz-executor/1549\n[ 3813.846612] Call Trace:\n[ 3813.846995]  dump_stack+0x108/0x15f\n[ 3813.847524]  print_address_description+0xa5/0x372\n[ 3813.848243]  kasan_report.cold+0x236/0x2a8\n[ 3813.849439]  check_memory_region+0x240/0x270\n[ 3813.850094]  memcpy+0x30/0x80\n[ 3813.850553]  sg_copy_buffer+0x157/0x1e0\n[ 3813.853032]  sg_copy_from_buffer+0x13/0x20\n[ 3813.853660]  fill_from_dev_buffer+0x135/0x370\n[ 3813.854329]  resp_readcap16+0x1ac/0x280\n[ 3813.856917]  schedule_resp+0x41f/0x1630\n[ 3813.858203]  scsi_debug_queuecommand+0xb32/0x17e0\n[ 3813.862699]  scsi_dispatch_cmd+0x330/0x950\n[ 3813.863329]  scsi_request_fn+0xd8e/0x1710\n[ 3813.863946]  __blk_run_queue+0x10b/0x230\n[ 3813.864544]  blk_execute_rq_nowait+0x1d8/0x400\n[ 3813.865220]  sg_common_write.isra.0+0xe61/0x2420\n[ 3813.871637]  sg_write+0x6c8/0xef0\n[ 3813.878853]  __vfs_write+0xe4/0x800\n[ 3813.883487]  vfs_write+0x17b/0x530\n[ 3813.884008]  ksys_write+0x103/0x270\n[ 3813.886268]  __x64_sys_write+0x77/0xc0\n[ 3813.886841]  do_syscall_64+0x106/0x360\n[ 3813.887415]  entry_SYSCALL_64_after_hwframe+0x44/0xa9\n\nThis issue can be reproduced with the following syzkaller log:\n\nr0 = openat(0xffffffffffffff9c, \u0026(0x7f0000000040)=\u0027./file0\\x00\u0027, 0x26e1, 0x0)\nr1 = syz_open_procfs(0xffffffffffffffff, \u0026(0x7f0000000000)=\u0027fd/3\\x00\u0027)\nopen_by_handle_at(r1, \u0026(0x7f00000003c0)=ANY=[@ANYRESHEX], 0x602000)\nr2 = syz_open_dev$sg(\u0026(0x7f0000000000), 0x0, 0x40782)\nwrite$binfmt_aout(r2, \u0026(0x7f0000000340)=ANY=[@ANYBLOB=\"00000000deff000000000000000000000000000000000000000000000000000047f007af9e107a41ec395f1bded7be24277a1501ff6196a83366f4e6362bc0ff2b247f68a972989b094b2da4fb3607fcf611a22dd04310d28c75039d\"], 0x126)\n\nIn resp_readcap16() we get \"int alloc_len\" value -1104926854, and then pass\nthe huge arr_len to fill_from_dev_buffer(), but arr is only 32 bytes. This\nleads to OOB in sg_copy_buffer().\n\nTo solve this issue, define alloc_len as u32."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:05.427Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/3e20cb072679bdb47747ccc8bee3233a4cf0765a"
        },
        {
          "url": "https://git.kernel.org/stable/c/5b8bed6464ad6653586e30df046185fd816ad999"
        },
        {
          "url": "https://git.kernel.org/stable/c/4e3ace0051e7e504b55d239daab8789dd89b863c"
        }
      ],
      "title": "scsi: scsi_debug: Fix out-of-bound read in resp_readcap16()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47191",
    "datePublished": "2024-04-10T18:56:29.455Z",
    "dateReserved": "2024-03-25T09:12:14.113Z",
    "dateUpdated": "2025-05-04T07:06:05.427Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48692 (GCVE-0-2022-48692)

Vulnerability from cvelistv5

Published

2024-05-03 15:05

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: Set scmnd->result only when scmnd is not NULL This change fixes the following kernel NULL pointer dereference which is reproduced by blktests srp/007 occasionally. BUG: kernel NULL pointer dereference, address: 0000000000000170 PGD 0 P4D 0 Oops: 0002 [#1] PREEMPT SMP NOPTI CPU: 0 PID: 9 Comm: kworker/0:1H Kdump: loaded Not tainted 6.0.0-rc1+ #37 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.15.0-29-g6a62e0cb0dfe-prebuilt.qemu.org 04/01/2014 Workqueue: 0x0 (kblockd) RIP: 0010:srp_recv_done+0x176/0x500 [ib_srp] Code: 00 4d 85 ff 0f 84 52 02 00 00 48 c7 82 80 02 00 00 00 00 00 00 4c 89 df 4c 89 14 24 e8 53 d3 4a f6 4c 8b 14 24 41 0f b6 42 13 <41> 89 87 70 01 00 00 41 0f b6 52 12 f6 c2 02 74 44 41 8b 42 1c b9 RSP: 0018:ffffaef7c0003e28 EFLAGS: 00000282 RAX: 0000000000000000 RBX: ffff9bc9486dea60 RCX: 0000000000000000 RDX: 0000000000000102 RSI: ffffffffb76bbd0e RDI: 00000000ffffffff RBP: ffff9bc980099a00 R08: 0000000000000001 R09: 0000000000000001 R10: ffff9bca53ef0000 R11: ffff9bc980099a10 R12: ffff9bc956e14000 R13: ffff9bc9836b9cb0 R14: ffff9bc9557b4480 R15: 0000000000000000 FS: 0000000000000000(0000) GS:ffff9bc97ec00000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000000170 CR3: 0000000007e04000 CR4: 00000000000006f0 Call Trace: <IRQ> __ib_process_cq+0xb7/0x280 [ib_core] ib_poll_handler+0x2b/0x130 [ib_core] irq_poll_softirq+0x93/0x150 __do_softirq+0xee/0x4b8 irq_exit_rcu+0xf7/0x130 sysvec_apic_timer_interrupt+0x8e/0xc0 </IRQ>

References

►

URL

Tags

	https://git.kernel.org/stable/c/f022576aa03c2385ea7f2b27ee5b331e43abf624
	https://git.kernel.org/stable/c/a8edd49c94b4b08019ed7d6dd794fca8078a4deb
	https://git.kernel.org/stable/c/f2c70f56f762e5dc3b0d7dc438fbb137cb116413
	https://git.kernel.org/stable/c/12f35199a2c0551187edbf8eb01379f0598659fa

Impacted products

Vendor

Product

Version

►

Linux

Version: 81982125c352f2db1012c2cd37487e6c0c3b7da8
Version: ad215aaea4f9d637f441566cdbbc610e9849e1fa
Version: ad215aaea4f9d637f441566cdbbc610e9849e1fa
Version: ad215aaea4f9d637f441566cdbbc610e9849e1fa

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.719Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f022576aa03c2385ea7f2b27ee5b331e43abf624"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a8edd49c94b4b08019ed7d6dd794fca8078a4deb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f2c70f56f762e5dc3b0d7dc438fbb137cb116413"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/12f35199a2c0551187edbf8eb01379f0598659fa"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48692",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:43:36.035080Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:27.772Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/ulp/srp/ib_srp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "f022576aa03c2385ea7f2b27ee5b331e43abf624",
              "status": "affected",
              "version": "81982125c352f2db1012c2cd37487e6c0c3b7da8",
              "versionType": "git"
            },
            {
              "lessThan": "a8edd49c94b4b08019ed7d6dd794fca8078a4deb",
              "status": "affected",
              "version": "ad215aaea4f9d637f441566cdbbc610e9849e1fa",
              "versionType": "git"
            },
            {
              "lessThan": "f2c70f56f762e5dc3b0d7dc438fbb137cb116413",
              "status": "affected",
              "version": "ad215aaea4f9d637f441566cdbbc610e9849e1fa",
              "versionType": "git"
            },
            {
              "lessThan": "12f35199a2c0551187edbf8eb01379f0598659fa",
              "status": "affected",
              "version": "ad215aaea4f9d637f441566cdbbc610e9849e1fa",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/infiniband/ulp/srp/ib_srp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nRDMA/srp: Set scmnd-\u003eresult only when scmnd is not NULL\n\nThis change fixes the following kernel NULL pointer dereference\nwhich is reproduced by blktests srp/007 occasionally.\n\nBUG: kernel NULL pointer dereference, address: 0000000000000170\nPGD 0 P4D 0\nOops: 0002 [#1] PREEMPT SMP NOPTI\nCPU: 0 PID: 9 Comm: kworker/0:1H Kdump: loaded Not tainted 6.0.0-rc1+ #37\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.15.0-29-g6a62e0cb0dfe-prebuilt.qemu.org 04/01/2014\nWorkqueue:  0x0 (kblockd)\nRIP: 0010:srp_recv_done+0x176/0x500 [ib_srp]\nCode: 00 4d 85 ff 0f 84 52 02 00 00 48 c7 82 80 02 00 00 00 00 00 00 4c 89 df 4c 89 14 24 e8 53 d3 4a f6 4c 8b 14 24 41 0f b6 42 13 \u003c41\u003e 89 87 70 01 00 00 41 0f b6 52 12 f6 c2 02 74 44 41 8b 42 1c b9\nRSP: 0018:ffffaef7c0003e28 EFLAGS: 00000282\nRAX: 0000000000000000 RBX: ffff9bc9486dea60 RCX: 0000000000000000\nRDX: 0000000000000102 RSI: ffffffffb76bbd0e RDI: 00000000ffffffff\nRBP: ffff9bc980099a00 R08: 0000000000000001 R09: 0000000000000001\nR10: ffff9bca53ef0000 R11: ffff9bc980099a10 R12: ffff9bc956e14000\nR13: ffff9bc9836b9cb0 R14: ffff9bc9557b4480 R15: 0000000000000000\nFS:  0000000000000000(0000) GS:ffff9bc97ec00000(0000) knlGS:0000000000000000\nCS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\nCR2: 0000000000000170 CR3: 0000000007e04000 CR4: 00000000000006f0\nCall Trace:\n \u003cIRQ\u003e\n __ib_process_cq+0xb7/0x280 [ib_core]\n ib_poll_handler+0x2b/0x130 [ib_core]\n irq_poll_softirq+0x93/0x150\n __do_softirq+0xee/0x4b8\n irq_exit_rcu+0xf7/0x130\n sysvec_apic_timer_interrupt+0x8e/0xc0\n \u003c/IRQ\u003e"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:10.730Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/f022576aa03c2385ea7f2b27ee5b331e43abf624"
        },
        {
          "url": "https://git.kernel.org/stable/c/a8edd49c94b4b08019ed7d6dd794fca8078a4deb"
        },
        {
          "url": "https://git.kernel.org/stable/c/f2c70f56f762e5dc3b0d7dc438fbb137cb116413"
        },
        {
          "url": "https://git.kernel.org/stable/c/12f35199a2c0551187edbf8eb01379f0598659fa"
        }
      ],
      "title": "RDMA/srp: Set scmnd-\u003eresult only when scmnd is not NULL",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48692",
    "datePublished": "2024-05-03T15:05:31.107Z",
    "dateReserved": "2024-05-03T14:55:07.144Z",
    "dateUpdated": "2025-05-04T08:21:10.730Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27014 (GCVE-0-2024-27014)

Vulnerability from cvelistv5

Published

2024-05-01 05:29

Modified

2025-05-04 09:02

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevent deadlock while disabling aRFS When disabling aRFS under the `priv->state_lock`, any scheduled aRFS works are canceled using the `cancel_work_sync` function, which waits for the work to end if it has already started. However, while waiting for the work handler, the handler will try to acquire the `state_lock` which is already acquired. The worker acquires the lock to delete the rules if the state is down, which is not the worker's responsibility since disabling aRFS deletes the rules. Add an aRFS state variable, which indicates whether the aRFS is enabled and prevent adding rules when the aRFS is disabled. Kernel log: ====================================================== WARNING: possible circular locking dependency detected 6.7.0-rc4_net_next_mlx5_5483eb2 #1 Tainted: G I ------------------------------------------------------ ethtool/386089 is trying to acquire lock: ffff88810f21ce68 ((work_completion)(&rule->arfs_work)){+.+.}-{0:0}, at: __flush_work+0x74/0x4e0 but task is already holding lock: ffff8884a1808cc0 (&priv->state_lock){+.+.}-{3:3}, at: mlx5e_ethtool_set_channels+0x53/0x200 [mlx5_core] which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #1 (&priv->state_lock){+.+.}-{3:3}: __mutex_lock+0x80/0xc90 arfs_handle_work+0x4b/0x3b0 [mlx5_core] process_one_work+0x1dc/0x4a0 worker_thread+0x1bf/0x3c0 kthread+0xd7/0x100 ret_from_fork+0x2d/0x50 ret_from_fork_asm+0x11/0x20 -> #0 ((work_completion)(&rule->arfs_work)){+.+.}-{0:0}: __lock_acquire+0x17b4/0x2c80 lock_acquire+0xd0/0x2b0 __flush_work+0x7a/0x4e0 __cancel_work_timer+0x131/0x1c0 arfs_del_rules+0x143/0x1e0 [mlx5_core] mlx5e_arfs_disable+0x1b/0x30 [mlx5_core] mlx5e_ethtool_set_channels+0xcb/0x200 [mlx5_core] ethnl_set_channels+0x28f/0x3b0 ethnl_default_set_doit+0xec/0x240 genl_family_rcv_msg_doit+0xd0/0x120 genl_rcv_msg+0x188/0x2c0 netlink_rcv_skb+0x54/0x100 genl_rcv+0x24/0x40 netlink_unicast+0x1a1/0x270 netlink_sendmsg+0x214/0x460 __sock_sendmsg+0x38/0x60 __sys_sendto+0x113/0x170 __x64_sys_sendto+0x20/0x30 do_syscall_64+0x40/0xe0 entry_SYSCALL_64_after_hwframe+0x46/0x4e other info that might help us debug this: Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(&priv->state_lock); lock((work_completion)(&rule->arfs_work)); lock(&priv->state_lock); lock((work_completion)(&rule->arfs_work)); *** DEADLOCK *** 3 locks held by ethtool/386089: #0: ffffffff82ea7210 (cb_lock){++++}-{3:3}, at: genl_rcv+0x15/0x40 #1: ffffffff82e94c88 (rtnl_mutex){+.+.}-{3:3}, at: ethnl_default_set_doit+0xd3/0x240 #2: ffff8884a1808cc0 (&priv->state_lock){+.+.}-{3:3}, at: mlx5e_ethtool_set_channels+0x53/0x200 [mlx5_core] stack backtrace: CPU: 15 PID: 386089 Comm: ethtool Tainted: G I 6.7.0-rc4_net_next_mlx5_5483eb2 #1 Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014 Call Trace: <TASK> dump_stack_lvl+0x60/0xa0 check_noncircular+0x144/0x160 __lock_acquire+0x17b4/0x2c80 lock_acquire+0xd0/0x2b0 ? __flush_work+0x74/0x4e0 ? save_trace+0x3e/0x360 ? __flush_work+0x74/0x4e0 __flush_work+0x7a/0x4e0 ? __flush_work+0x74/0x4e0 ? __lock_acquire+0xa78/0x2c80 ? lock_acquire+0xd0/0x2b0 ? mark_held_locks+0x49/0x70 __cancel_work_timer+0x131/0x1c0 ? mark_held_locks+0x49/0x70 arfs_del_rules+0x143/0x1e0 [mlx5_core] mlx5e_arfs_disable+0x1b/0x30 [mlx5_core] mlx5e_ethtool_set_channels+0xcb/0x200 [mlx5_core] ethnl_set_channels+0x28f/0x3b0 ethnl_default_set_doit+0xec/0x240 genl_family_rcv_msg_doit+0xd0/0x120 genl_rcv_msg+0x188/0x2c0 ? ethn ---truncated---

References

►

URL

Tags

	https://git.kernel.org/stable/c/46efa4d5930cf3c2af8c01f75e0a47e4fc045e3b
	https://git.kernel.org/stable/c/48c4bb81df19402d4346032353d0795260255e3b
	https://git.kernel.org/stable/c/0080bf99499468030248ebd25dd645e487dcecdc
	https://git.kernel.org/stable/c/fef965764cf562f28afb997b626fc7c3cec99693

Impacted products

Vendor

Product

Version

►

Linux

Version: 45bf454ae88414e80b80979ebb2c22bd66ea7d1b
Version: 45bf454ae88414e80b80979ebb2c22bd66ea7d1b
Version: 45bf454ae88414e80b80979ebb2c22bd66ea7d1b
Version: 45bf454ae88414e80b80979ebb2c22bd66ea7d1b

Linux

Version: 4.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27014",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:40:27.350253Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:46:06.728Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.849Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/46efa4d5930cf3c2af8c01f75e0a47e4fc045e3b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/48c4bb81df19402d4346032353d0795260255e3b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0080bf99499468030248ebd25dd645e487dcecdc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fef965764cf562f28afb997b626fc7c3cec99693"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/en_arfs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "46efa4d5930cf3c2af8c01f75e0a47e4fc045e3b",
              "status": "affected",
              "version": "45bf454ae88414e80b80979ebb2c22bd66ea7d1b",
              "versionType": "git"
            },
            {
              "lessThan": "48c4bb81df19402d4346032353d0795260255e3b",
              "status": "affected",
              "version": "45bf454ae88414e80b80979ebb2c22bd66ea7d1b",
              "versionType": "git"
            },
            {
              "lessThan": "0080bf99499468030248ebd25dd645e487dcecdc",
              "status": "affected",
              "version": "45bf454ae88414e80b80979ebb2c22bd66ea7d1b",
              "versionType": "git"
            },
            {
              "lessThan": "fef965764cf562f28afb997b626fc7c3cec99693",
              "status": "affected",
              "version": "45bf454ae88414e80b80979ebb2c22bd66ea7d1b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/mellanox/mlx5/core/en_arfs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.7"
            },
            {
              "lessThan": "4.7",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.88",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.29",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.8",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.88",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.29",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.8",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.7",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/mlx5e: Prevent deadlock while disabling aRFS\n\nWhen disabling aRFS under the `priv-\u003estate_lock`, any scheduled\naRFS works are canceled using the `cancel_work_sync` function,\nwhich waits for the work to end if it has already started.\nHowever, while waiting for the work handler, the handler will\ntry to acquire the `state_lock` which is already acquired.\n\nThe worker acquires the lock to delete the rules if the state\nis down, which is not the worker\u0027s responsibility since\ndisabling aRFS deletes the rules.\n\nAdd an aRFS state variable, which indicates whether the aRFS is\nenabled and prevent adding rules when the aRFS is disabled.\n\nKernel log:\n\n======================================================\nWARNING: possible circular locking dependency detected\n6.7.0-rc4_net_next_mlx5_5483eb2 #1 Tainted: G          I\n------------------------------------------------------\nethtool/386089 is trying to acquire lock:\nffff88810f21ce68 ((work_completion)(\u0026rule-\u003earfs_work)){+.+.}-{0:0}, at: __flush_work+0x74/0x4e0\n\nbut task is already holding lock:\nffff8884a1808cc0 (\u0026priv-\u003estate_lock){+.+.}-{3:3}, at: mlx5e_ethtool_set_channels+0x53/0x200 [mlx5_core]\n\nwhich lock already depends on the new lock.\n\nthe existing dependency chain (in reverse order) is:\n\n-\u003e #1 (\u0026priv-\u003estate_lock){+.+.}-{3:3}:\n       __mutex_lock+0x80/0xc90\n       arfs_handle_work+0x4b/0x3b0 [mlx5_core]\n       process_one_work+0x1dc/0x4a0\n       worker_thread+0x1bf/0x3c0\n       kthread+0xd7/0x100\n       ret_from_fork+0x2d/0x50\n       ret_from_fork_asm+0x11/0x20\n\n-\u003e #0 ((work_completion)(\u0026rule-\u003earfs_work)){+.+.}-{0:0}:\n       __lock_acquire+0x17b4/0x2c80\n       lock_acquire+0xd0/0x2b0\n       __flush_work+0x7a/0x4e0\n       __cancel_work_timer+0x131/0x1c0\n       arfs_del_rules+0x143/0x1e0 [mlx5_core]\n       mlx5e_arfs_disable+0x1b/0x30 [mlx5_core]\n       mlx5e_ethtool_set_channels+0xcb/0x200 [mlx5_core]\n       ethnl_set_channels+0x28f/0x3b0\n       ethnl_default_set_doit+0xec/0x240\n       genl_family_rcv_msg_doit+0xd0/0x120\n       genl_rcv_msg+0x188/0x2c0\n       netlink_rcv_skb+0x54/0x100\n       genl_rcv+0x24/0x40\n       netlink_unicast+0x1a1/0x270\n       netlink_sendmsg+0x214/0x460\n       __sock_sendmsg+0x38/0x60\n       __sys_sendto+0x113/0x170\n       __x64_sys_sendto+0x20/0x30\n       do_syscall_64+0x40/0xe0\n       entry_SYSCALL_64_after_hwframe+0x46/0x4e\n\nother info that might help us debug this:\n\n Possible unsafe locking scenario:\n\n       CPU0                    CPU1\n       ----                    ----\n  lock(\u0026priv-\u003estate_lock);\n                               lock((work_completion)(\u0026rule-\u003earfs_work));\n                               lock(\u0026priv-\u003estate_lock);\n  lock((work_completion)(\u0026rule-\u003earfs_work));\n\n *** DEADLOCK ***\n\n3 locks held by ethtool/386089:\n #0: ffffffff82ea7210 (cb_lock){++++}-{3:3}, at: genl_rcv+0x15/0x40\n #1: ffffffff82e94c88 (rtnl_mutex){+.+.}-{3:3}, at: ethnl_default_set_doit+0xd3/0x240\n #2: ffff8884a1808cc0 (\u0026priv-\u003estate_lock){+.+.}-{3:3}, at: mlx5e_ethtool_set_channels+0x53/0x200 [mlx5_core]\n\nstack backtrace:\nCPU: 15 PID: 386089 Comm: ethtool Tainted: G          I        6.7.0-rc4_net_next_mlx5_5483eb2 #1\nHardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.13.0-0-gf21b5a4aeb02-prebuilt.qemu.org 04/01/2014\nCall Trace:\n \u003cTASK\u003e\n dump_stack_lvl+0x60/0xa0\n check_noncircular+0x144/0x160\n __lock_acquire+0x17b4/0x2c80\n lock_acquire+0xd0/0x2b0\n ? __flush_work+0x74/0x4e0\n ? save_trace+0x3e/0x360\n ? __flush_work+0x74/0x4e0\n __flush_work+0x7a/0x4e0\n ? __flush_work+0x74/0x4e0\n ? __lock_acquire+0xa78/0x2c80\n ? lock_acquire+0xd0/0x2b0\n ? mark_held_locks+0x49/0x70\n __cancel_work_timer+0x131/0x1c0\n ? mark_held_locks+0x49/0x70\n arfs_del_rules+0x143/0x1e0 [mlx5_core]\n mlx5e_arfs_disable+0x1b/0x30 [mlx5_core]\n mlx5e_ethtool_set_channels+0xcb/0x200 [mlx5_core]\n ethnl_set_channels+0x28f/0x3b0\n ethnl_default_set_doit+0xec/0x240\n genl_family_rcv_msg_doit+0xd0/0x120\n genl_rcv_msg+0x188/0x2c0\n ? ethn\n---truncated---"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:02:11.864Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/46efa4d5930cf3c2af8c01f75e0a47e4fc045e3b"
        },
        {
          "url": "https://git.kernel.org/stable/c/48c4bb81df19402d4346032353d0795260255e3b"
        },
        {
          "url": "https://git.kernel.org/stable/c/0080bf99499468030248ebd25dd645e487dcecdc"
        },
        {
          "url": "https://git.kernel.org/stable/c/fef965764cf562f28afb997b626fc7c3cec99693"
        }
      ],
      "title": "net/mlx5e: Prevent deadlock while disabling aRFS",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27014",
    "datePublished": "2024-05-01T05:29:46.980Z",
    "dateReserved": "2024-02-19T14:20:24.209Z",
    "dateUpdated": "2025-05-04T09:02:11.864Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-27046 (GCVE-0-2024-27046)

Vulnerability from cvelistv5

Published

2024-05-01 12:54

Modified

2025-05-04 09:03

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: nfp: flower: handle acti_netdevs allocation failure The kmalloc_array() in nfp_fl_lag_do_work() will return null, if the physical memory has run out. As a result, if we dereference the acti_netdevs, the null pointer dereference bugs will happen. This patch adds a check to judge whether allocation failure occurs. If it happens, the delayed work will be rescheduled and try again.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d746889db75a76aeee95fb705b8e1ac28c684a2e
	https://git.kernel.org/stable/c/3b1e8a617eb0f4cdc19def530047a95b5abde07d
	https://git.kernel.org/stable/c/928705e341010dd910fdece61ccb974f494a758f
	https://git.kernel.org/stable/c/0d387dc503f9a53e6d1f6e9dd0292d38f083eba5
	https://git.kernel.org/stable/c/c9b4e220dd18f79507803f38a55d53b483f6c9c3
	https://git.kernel.org/stable/c/408ba7fd04f959c61b50db79c983484312fea642
	https://git.kernel.org/stable/c/c8df9203bf22c66fa26e8d8c7f8ce181cf88099d
	https://git.kernel.org/stable/c/9d8eb1238377cd994829f9162ae396a84ae037b2
	https://git.kernel.org/stable/c/84e95149bd341705f0eca6a7fcb955c548805002

Impacted products

Vendor

Product

Version

►

Linux

Version: bb9a8d031140f186d13d82f57b0f5646d596652f
Version: bb9a8d031140f186d13d82f57b0f5646d596652f
Version: bb9a8d031140f186d13d82f57b0f5646d596652f
Version: bb9a8d031140f186d13d82f57b0f5646d596652f
Version: bb9a8d031140f186d13d82f57b0f5646d596652f
Version: bb9a8d031140f186d13d82f57b0f5646d596652f
Version: bb9a8d031140f186d13d82f57b0f5646d596652f
Version: bb9a8d031140f186d13d82f57b0f5646d596652f
Version: bb9a8d031140f186d13d82f57b0f5646d596652f

Linux

Version: 4.18

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-27046",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:40:11.581706Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:45:28.272Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.990Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d746889db75a76aeee95fb705b8e1ac28c684a2e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3b1e8a617eb0f4cdc19def530047a95b5abde07d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/928705e341010dd910fdece61ccb974f494a758f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0d387dc503f9a53e6d1f6e9dd0292d38f083eba5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c9b4e220dd18f79507803f38a55d53b483f6c9c3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/408ba7fd04f959c61b50db79c983484312fea642"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c8df9203bf22c66fa26e8d8c7f8ce181cf88099d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9d8eb1238377cd994829f9162ae396a84ae037b2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/84e95149bd341705f0eca6a7fcb955c548805002"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/netronome/nfp/flower/lag_conf.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d746889db75a76aeee95fb705b8e1ac28c684a2e",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            },
            {
              "lessThan": "3b1e8a617eb0f4cdc19def530047a95b5abde07d",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            },
            {
              "lessThan": "928705e341010dd910fdece61ccb974f494a758f",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            },
            {
              "lessThan": "0d387dc503f9a53e6d1f6e9dd0292d38f083eba5",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            },
            {
              "lessThan": "c9b4e220dd18f79507803f38a55d53b483f6c9c3",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            },
            {
              "lessThan": "408ba7fd04f959c61b50db79c983484312fea642",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            },
            {
              "lessThan": "c8df9203bf22c66fa26e8d8c7f8ce181cf88099d",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            },
            {
              "lessThan": "9d8eb1238377cd994829f9162ae396a84ae037b2",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            },
            {
              "lessThan": "84e95149bd341705f0eca6a7fcb955c548805002",
              "status": "affected",
              "version": "bb9a8d031140f186d13d82f57b0f5646d596652f",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/netronome/nfp/flower/lag_conf.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.18"
            },
            {
              "lessThan": "4.18",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.18",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnfp: flower: handle acti_netdevs allocation failure\n\nThe kmalloc_array() in nfp_fl_lag_do_work() will return null, if\nthe physical memory has run out. As a result, if we dereference\nthe acti_netdevs, the null pointer dereference bugs will happen.\n\nThis patch adds a check to judge whether allocation failure occurs.\nIf it happens, the delayed work will be rescheduled and try again."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:03:02.921Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d746889db75a76aeee95fb705b8e1ac28c684a2e"
        },
        {
          "url": "https://git.kernel.org/stable/c/3b1e8a617eb0f4cdc19def530047a95b5abde07d"
        },
        {
          "url": "https://git.kernel.org/stable/c/928705e341010dd910fdece61ccb974f494a758f"
        },
        {
          "url": "https://git.kernel.org/stable/c/0d387dc503f9a53e6d1f6e9dd0292d38f083eba5"
        },
        {
          "url": "https://git.kernel.org/stable/c/c9b4e220dd18f79507803f38a55d53b483f6c9c3"
        },
        {
          "url": "https://git.kernel.org/stable/c/408ba7fd04f959c61b50db79c983484312fea642"
        },
        {
          "url": "https://git.kernel.org/stable/c/c8df9203bf22c66fa26e8d8c7f8ce181cf88099d"
        },
        {
          "url": "https://git.kernel.org/stable/c/9d8eb1238377cd994829f9162ae396a84ae037b2"
        },
        {
          "url": "https://git.kernel.org/stable/c/84e95149bd341705f0eca6a7fcb955c548805002"
        }
      ],
      "title": "nfp: flower: handle acti_netdevs allocation failure",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-27046",
    "datePublished": "2024-05-01T12:54:21.725Z",
    "dateReserved": "2024-02-19T14:20:24.213Z",
    "dateUpdated": "2025-05-04T09:03:02.921Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48636 (GCVE-0-2022-48636)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-05-04 08:20

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup Fix Oops in dasd_alias_get_start_dev() function caused by the pavgroup pointer being NULL. The pavgroup pointer is checked on the entrance of the function but without the lcu->lock being held. Therefore there is a race window between dasd_alias_get_start_dev() and _lcu_update() which sets pavgroup to NULL with the lcu->lock held. Fix by checking the pavgroup pointer with lcu->lock held.

References

►

URL

Tags

	https://git.kernel.org/stable/c/d86b4267834e6d4af62e3073e48166e349ab1b70
	https://git.kernel.org/stable/c/49f401a98b318761ca2e15d4c7869a20043fbed4
	https://git.kernel.org/stable/c/aaba5ff2742043705bc4c02fd0b2b246e2e16da1
	https://git.kernel.org/stable/c/2e473351400e3dd66f0b71eddcef82ee45a584c1
	https://git.kernel.org/stable/c/f5fcc9d6d71d9ff7fdbdd4b89074e6e24fffc20b
	https://git.kernel.org/stable/c/d3a67c21b18f33c79382084af556557c442f12a6
	https://git.kernel.org/stable/c/650a2e79d176db753654d3dde88e53a2033036ac
	https://git.kernel.org/stable/c/db7ba07108a48c0f95b74fabbfd5d63e924f992d

Impacted products

Vendor

Product

Version

►

Linux

Version: 8e09f21574ea3028d5629e5de759e0b196c690c5
Version: 8e09f21574ea3028d5629e5de759e0b196c690c5
Version: 8e09f21574ea3028d5629e5de759e0b196c690c5
Version: 8e09f21574ea3028d5629e5de759e0b196c690c5
Version: 8e09f21574ea3028d5629e5de759e0b196c690c5
Version: 8e09f21574ea3028d5629e5de759e0b196c690c5
Version: 8e09f21574ea3028d5629e5de759e0b196c690c5
Version: 8e09f21574ea3028d5629e5de759e0b196c690c5

Linux

Version: 2.6.25

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48636",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-07T17:07:44.029910Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-476",
                "description": "CWE-476 NULL Pointer Dereference",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-29T16:01:41.917Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.505Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d86b4267834e6d4af62e3073e48166e349ab1b70"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/49f401a98b318761ca2e15d4c7869a20043fbed4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/aaba5ff2742043705bc4c02fd0b2b246e2e16da1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2e473351400e3dd66f0b71eddcef82ee45a584c1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f5fcc9d6d71d9ff7fdbdd4b89074e6e24fffc20b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d3a67c21b18f33c79382084af556557c442f12a6"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/650a2e79d176db753654d3dde88e53a2033036ac"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/db7ba07108a48c0f95b74fabbfd5d63e924f992d"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/s390/block/dasd_alias.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d86b4267834e6d4af62e3073e48166e349ab1b70",
              "status": "affected",
              "version": "8e09f21574ea3028d5629e5de759e0b196c690c5",
              "versionType": "git"
            },
            {
              "lessThan": "49f401a98b318761ca2e15d4c7869a20043fbed4",
              "status": "affected",
              "version": "8e09f21574ea3028d5629e5de759e0b196c690c5",
              "versionType": "git"
            },
            {
              "lessThan": "aaba5ff2742043705bc4c02fd0b2b246e2e16da1",
              "status": "affected",
              "version": "8e09f21574ea3028d5629e5de759e0b196c690c5",
              "versionType": "git"
            },
            {
              "lessThan": "2e473351400e3dd66f0b71eddcef82ee45a584c1",
              "status": "affected",
              "version": "8e09f21574ea3028d5629e5de759e0b196c690c5",
              "versionType": "git"
            },
            {
              "lessThan": "f5fcc9d6d71d9ff7fdbdd4b89074e6e24fffc20b",
              "status": "affected",
              "version": "8e09f21574ea3028d5629e5de759e0b196c690c5",
              "versionType": "git"
            },
            {
              "lessThan": "d3a67c21b18f33c79382084af556557c442f12a6",
              "status": "affected",
              "version": "8e09f21574ea3028d5629e5de759e0b196c690c5",
              "versionType": "git"
            },
            {
              "lessThan": "650a2e79d176db753654d3dde88e53a2033036ac",
              "status": "affected",
              "version": "8e09f21574ea3028d5629e5de759e0b196c690c5",
              "versionType": "git"
            },
            {
              "lessThan": "db7ba07108a48c0f95b74fabbfd5d63e924f992d",
              "status": "affected",
              "version": "8e09f21574ea3028d5629e5de759e0b196c690c5",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/s390/block/dasd_alias.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.25"
            },
            {
              "lessThan": "2.6.25",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.330",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.295",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.260",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.330",
                  "versionStartIncluding": "2.6.25",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.295",
                  "versionStartIncluding": "2.6.25",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.260",
                  "versionStartIncluding": "2.6.25",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "versionStartIncluding": "2.6.25",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "2.6.25",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "2.6.25",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "2.6.25",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "2.6.25",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ns390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup\n\nFix Oops in dasd_alias_get_start_dev() function caused by the pavgroup\npointer being NULL.\n\nThe pavgroup pointer is checked on the entrance of the function but\nwithout the lcu-\u003elock being held. Therefore there is a race window\nbetween dasd_alias_get_start_dev() and _lcu_update() which sets\npavgroup to NULL with the lcu-\u003elock held.\n\nFix by checking the pavgroup pointer with lcu-\u003elock held."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:12.801Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d86b4267834e6d4af62e3073e48166e349ab1b70"
        },
        {
          "url": "https://git.kernel.org/stable/c/49f401a98b318761ca2e15d4c7869a20043fbed4"
        },
        {
          "url": "https://git.kernel.org/stable/c/aaba5ff2742043705bc4c02fd0b2b246e2e16da1"
        },
        {
          "url": "https://git.kernel.org/stable/c/2e473351400e3dd66f0b71eddcef82ee45a584c1"
        },
        {
          "url": "https://git.kernel.org/stable/c/f5fcc9d6d71d9ff7fdbdd4b89074e6e24fffc20b"
        },
        {
          "url": "https://git.kernel.org/stable/c/d3a67c21b18f33c79382084af556557c442f12a6"
        },
        {
          "url": "https://git.kernel.org/stable/c/650a2e79d176db753654d3dde88e53a2033036ac"
        },
        {
          "url": "https://git.kernel.org/stable/c/db7ba07108a48c0f95b74fabbfd5d63e924f992d"
        }
      ],
      "title": "s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48636",
    "datePublished": "2024-04-28T12:59:28.858Z",
    "dateReserved": "2024-02-25T13:44:28.315Z",
    "dateUpdated": "2025-05-04T08:20:12.801Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48638 (GCVE-0-2022-48638)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-05-04 08:20

Severity ?

5.3 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Summary

In the Linux kernel, the following vulnerability has been resolved: cgroup: cgroup_get_from_id() must check the looked-up kn is a directory cgroup has to be one kernfs dir, otherwise kernel panic is caused, especially cgroup id is provide from userspace.

References

►

URL

Tags

	https://git.kernel.org/stable/c/8484a356cee8ce3d6a8e6266ff99be326e9273ad
	https://git.kernel.org/stable/c/1e9571887f97b17cf3ffe9aa4da89090ea60988b
	https://git.kernel.org/stable/c/df02452f3df069a59bc9e69c84435bf115cb6e37

Impacted products

Vendor

Product

Version

►

Linux

Version: 6b658c4863c15936872a93c9ee879043bf6393c9
Version: 6b658c4863c15936872a93c9ee879043bf6393c9
Version: 6b658c4863c15936872a93c9ee879043bf6393c9

Linux

Version: 5.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "LOW",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48638",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-16T20:40:33.124244Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T15:40:06.556Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.512Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8484a356cee8ce3d6a8e6266ff99be326e9273ad"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1e9571887f97b17cf3ffe9aa4da89090ea60988b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/df02452f3df069a59bc9e69c84435bf115cb6e37"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/cgroup/cgroup.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "8484a356cee8ce3d6a8e6266ff99be326e9273ad",
              "status": "affected",
              "version": "6b658c4863c15936872a93c9ee879043bf6393c9",
              "versionType": "git"
            },
            {
              "lessThan": "1e9571887f97b17cf3ffe9aa4da89090ea60988b",
              "status": "affected",
              "version": "6b658c4863c15936872a93c9ee879043bf6393c9",
              "versionType": "git"
            },
            {
              "lessThan": "df02452f3df069a59bc9e69c84435bf115cb6e37",
              "status": "affected",
              "version": "6b658c4863c15936872a93c9ee879043bf6393c9",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "kernel/cgroup/cgroup.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.14"
            },
            {
              "lessThan": "5.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.72",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.72",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncgroup: cgroup_get_from_id() must check the looked-up kn is a directory\n\ncgroup has to be one kernfs dir, otherwise kernel panic is caused,\nespecially cgroup id is provide from userspace."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:15.246Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/8484a356cee8ce3d6a8e6266ff99be326e9273ad"
        },
        {
          "url": "https://git.kernel.org/stable/c/1e9571887f97b17cf3ffe9aa4da89090ea60988b"
        },
        {
          "url": "https://git.kernel.org/stable/c/df02452f3df069a59bc9e69c84435bf115cb6e37"
        }
      ],
      "title": "cgroup: cgroup_get_from_id() must check the looked-up kn is a directory",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48638",
    "datePublished": "2024-04-28T12:59:37.596Z",
    "dateReserved": "2024-02-25T13:44:28.315Z",
    "dateUpdated": "2025-05-04T08:20:15.246Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52591 (GCVE-0-2023-52591)

Vulnerability from cvelistv5

Published

2024-03-06 06:45

Modified

2025-05-04 07:39

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: reiserfs: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent does not change. Change reiserfs rename code to avoid touching renamed directory if its parent does not change as without locking that can corrupt the filesystem.

References

►

URL

Tags

	https://git.kernel.org/stable/c/17e1361cb91dc1325834da95d2ab532959d2debc
	https://git.kernel.org/stable/c/c04c162f82ac403917780eb6d1654694455d4e7c
	https://git.kernel.org/stable/c/49db9b1b86a82448dfaf3fcfefcf678dee56c8ed

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7.8,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-52591",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-06T16:59:49.754179Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-01T15:58:18.846Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.118Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/17e1361cb91dc1325834da95d2ab532959d2debc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c04c162f82ac403917780eb6d1654694455d4e7c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/49db9b1b86a82448dfaf3fcfefcf678dee56c8ed"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/reiserfs/namei.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "17e1361cb91dc1325834da95d2ab532959d2debc",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "c04c162f82ac403917780eb6d1654694455d4e7c",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "49db9b1b86a82448dfaf3fcfefcf678dee56c8ed",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/reiserfs/namei.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nreiserfs: Avoid touching renamed directory if parent does not change\n\nThe VFS will not be locking moved directory if its parent does not\nchange. Change reiserfs rename code to avoid touching renamed directory\nif its parent does not change as without locking that can corrupt the\nfilesystem."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:39:22.876Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/17e1361cb91dc1325834da95d2ab532959d2debc"
        },
        {
          "url": "https://git.kernel.org/stable/c/c04c162f82ac403917780eb6d1654694455d4e7c"
        },
        {
          "url": "https://git.kernel.org/stable/c/49db9b1b86a82448dfaf3fcfefcf678dee56c8ed"
        }
      ],
      "title": "reiserfs: Avoid touching renamed directory if parent does not change",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52591",
    "datePublished": "2024-03-06T06:45:23.480Z",
    "dateReserved": "2024-03-02T21:55:42.570Z",
    "dateUpdated": "2025-05-04T07:39:22.876Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48671 (GCVE-0-2022-48671)

Vulnerability from cvelistv5

Published

2024-05-03 14:50

Modified

2025-05-04 08:20

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all() syzbot is hitting percpu_rwsem_assert_held(&cpu_hotplug_lock) warning at cpuset_attach() [1], for commit 4f7e7236435ca0ab ("cgroup: Fix threadgroup_rwsem <-> cpus_read_lock() deadlock") missed that cpuset_attach() is also called from cgroup_attach_task_all(). Add cpus_read_lock() like what cgroup_procs_write_start() does.

References

►

URL

Tags

	https://git.kernel.org/stable/c/321488cfac7d0eb6d97de467015ff754f85813ff
	https://git.kernel.org/stable/c/07191f984842d50020789ff14c75da436a7f46a9
	https://git.kernel.org/stable/c/9f267393b036f1470fb12fb892d59e7ff8aeb58d
	https://git.kernel.org/stable/c/5db17805b6ba4c34dab303f49aea3562fc25af75
	https://git.kernel.org/stable/c/99bc25748e394d17f9e8b10cc7f273b8e64c1c7e
	https://git.kernel.org/stable/c/43626dade36fa74d3329046f4ae2d7fdefe401c6

Impacted products

Vendor

Product

Version

►

Linux

Version: e446300968c6bd25d9cd6c33b9600780a39b3975
Version: 59c6902a96b4439e07c25ef86a4593bea5481c3b
Version: dee1e2b18cf5426eed985512ccc6636ec69dbdd6
Version: 3bf4bf54069f9b62a54988e5d085023c17a66c90
Version: c0deb027c99c099aa6b831e326bfba802b25e774
Version: 4f7e7236435ca0abe005c674ebd6892c6e83aeb3

Linux

Version: 5.4.213   ≤
Version: 5.10.143   ≤
Version: 5.15.68   ≤
Version: 5.19.9   ≤

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48671",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-06T15:12:14.079254Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-667",
                "description": "CWE-667 Improper Locking",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-20T14:42:25.347Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.720Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/321488cfac7d0eb6d97de467015ff754f85813ff"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/07191f984842d50020789ff14c75da436a7f46a9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9f267393b036f1470fb12fb892d59e7ff8aeb58d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5db17805b6ba4c34dab303f49aea3562fc25af75"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/99bc25748e394d17f9e8b10cc7f273b8e64c1c7e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/43626dade36fa74d3329046f4ae2d7fdefe401c6"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/cgroup/cgroup-v1.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "321488cfac7d0eb6d97de467015ff754f85813ff",
              "status": "affected",
              "version": "e446300968c6bd25d9cd6c33b9600780a39b3975",
              "versionType": "git"
            },
            {
              "lessThan": "07191f984842d50020789ff14c75da436a7f46a9",
              "status": "affected",
              "version": "59c6902a96b4439e07c25ef86a4593bea5481c3b",
              "versionType": "git"
            },
            {
              "lessThan": "9f267393b036f1470fb12fb892d59e7ff8aeb58d",
              "status": "affected",
              "version": "dee1e2b18cf5426eed985512ccc6636ec69dbdd6",
              "versionType": "git"
            },
            {
              "lessThan": "5db17805b6ba4c34dab303f49aea3562fc25af75",
              "status": "affected",
              "version": "3bf4bf54069f9b62a54988e5d085023c17a66c90",
              "versionType": "git"
            },
            {
              "lessThan": "99bc25748e394d17f9e8b10cc7f273b8e64c1c7e",
              "status": "affected",
              "version": "c0deb027c99c099aa6b831e326bfba802b25e774",
              "versionType": "git"
            },
            {
              "lessThan": "43626dade36fa74d3329046f4ae2d7fdefe401c6",
              "status": "affected",
              "version": "4f7e7236435ca0abe005c674ebd6892c6e83aeb3",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "kernel/cgroup/cgroup-v1.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "5.4.215",
              "status": "affected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThan": "5.10.145",
              "status": "affected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThan": "5.15.70",
              "status": "affected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThan": "5.19.11",
              "status": "affected",
              "version": "5.19.9",
              "versionType": "semver"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "versionStartIncluding": "5.4.213",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.145",
                  "versionStartIncluding": "5.10.143",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.70",
                  "versionStartIncluding": "5.15.68",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.11",
                  "versionStartIncluding": "5.19.9",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()\n\nsyzbot is hitting percpu_rwsem_assert_held(\u0026cpu_hotplug_lock) warning at\ncpuset_attach() [1], for commit 4f7e7236435ca0ab (\"cgroup: Fix\nthreadgroup_rwsem \u003c-\u003e cpus_read_lock() deadlock\") missed that\ncpuset_attach() is also called from cgroup_attach_task_all().\nAdd cpus_read_lock() like what cgroup_procs_write_start() does."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:58.178Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/321488cfac7d0eb6d97de467015ff754f85813ff"
        },
        {
          "url": "https://git.kernel.org/stable/c/07191f984842d50020789ff14c75da436a7f46a9"
        },
        {
          "url": "https://git.kernel.org/stable/c/9f267393b036f1470fb12fb892d59e7ff8aeb58d"
        },
        {
          "url": "https://git.kernel.org/stable/c/5db17805b6ba4c34dab303f49aea3562fc25af75"
        },
        {
          "url": "https://git.kernel.org/stable/c/99bc25748e394d17f9e8b10cc7f273b8e64c1c7e"
        },
        {
          "url": "https://git.kernel.org/stable/c/43626dade36fa74d3329046f4ae2d7fdefe401c6"
        }
      ],
      "title": "cgroup: Add missing cpus_read_lock() to cgroup_attach_task_all()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48671",
    "datePublished": "2024-05-03T14:50:23.558Z",
    "dateReserved": "2024-02-25T13:44:28.321Z",
    "dateUpdated": "2025-05-04T08:20:58.178Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48693 (GCVE-0-2022-48693)

Vulnerability from cvelistv5

Published

2024-05-03 15:05

Modified

2025-05-04 08:21

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs In brcmstb_pm_probe(), there are two kinds of leak bugs: (1) we need to add of_node_put() when for_each__matching_node() breaks (2) we need to add iounmap() for each iomap in fail path

References

►

URL

Tags

	https://git.kernel.org/stable/c/0284b4e6dec6088a41607aa3f42bf51edff01883
	https://git.kernel.org/stable/c/57b2897ec3ffe4cbe018446be6d04432919dca6b
	https://git.kernel.org/stable/c/6dc0251638a4a1a998506dbd4627f8317e907558
	https://git.kernel.org/stable/c/43245c77d9efd8c9eb91bf225d07954dcf32204d
	https://git.kernel.org/stable/c/653500b400d5576940b7429690f7197199ddcc82
	https://git.kernel.org/stable/c/1085f5080647f0c9f357c270a537869191f7f2a1

Impacted products

Vendor

Product

Version

►

Linux

Version: 0b741b8234c86065fb6954d32d427b3f7e14756f
Version: 0b741b8234c86065fb6954d32d427b3f7e14756f
Version: 0b741b8234c86065fb6954d32d427b3f7e14756f
Version: 0b741b8234c86065fb6954d32d427b3f7e14756f
Version: 0b741b8234c86065fb6954d32d427b3f7e14756f
Version: 0b741b8234c86065fb6954d32d427b3f7e14756f

Linux

Version: 4.15

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.717Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0284b4e6dec6088a41607aa3f42bf51edff01883"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/57b2897ec3ffe4cbe018446be6d04432919dca6b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6dc0251638a4a1a998506dbd4627f8317e907558"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/43245c77d9efd8c9eb91bf225d07954dcf32204d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/653500b400d5576940b7429690f7197199ddcc82"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1085f5080647f0c9f357c270a537869191f7f2a1"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48693",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:43:32.791799Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:27.378Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/soc/bcm/brcmstb/pm/pm-arm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "0284b4e6dec6088a41607aa3f42bf51edff01883",
              "status": "affected",
              "version": "0b741b8234c86065fb6954d32d427b3f7e14756f",
              "versionType": "git"
            },
            {
              "lessThan": "57b2897ec3ffe4cbe018446be6d04432919dca6b",
              "status": "affected",
              "version": "0b741b8234c86065fb6954d32d427b3f7e14756f",
              "versionType": "git"
            },
            {
              "lessThan": "6dc0251638a4a1a998506dbd4627f8317e907558",
              "status": "affected",
              "version": "0b741b8234c86065fb6954d32d427b3f7e14756f",
              "versionType": "git"
            },
            {
              "lessThan": "43245c77d9efd8c9eb91bf225d07954dcf32204d",
              "status": "affected",
              "version": "0b741b8234c86065fb6954d32d427b3f7e14756f",
              "versionType": "git"
            },
            {
              "lessThan": "653500b400d5576940b7429690f7197199ddcc82",
              "status": "affected",
              "version": "0b741b8234c86065fb6954d32d427b3f7e14756f",
              "versionType": "git"
            },
            {
              "lessThan": "1085f5080647f0c9f357c270a537869191f7f2a1",
              "status": "affected",
              "version": "0b741b8234c86065fb6954d32d427b3f7e14756f",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/soc/bcm/brcmstb/pm/pm-arm.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.15"
            },
            {
              "lessThan": "4.15",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.258",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.258",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "4.15",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsoc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs\n\nIn brcmstb_pm_probe(), there are two kinds of leak bugs:\n\n(1) we need to add of_node_put() when for_each__matching_node() breaks\n(2) we need to add iounmap() for each iomap in fail path"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:11.817Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/0284b4e6dec6088a41607aa3f42bf51edff01883"
        },
        {
          "url": "https://git.kernel.org/stable/c/57b2897ec3ffe4cbe018446be6d04432919dca6b"
        },
        {
          "url": "https://git.kernel.org/stable/c/6dc0251638a4a1a998506dbd4627f8317e907558"
        },
        {
          "url": "https://git.kernel.org/stable/c/43245c77d9efd8c9eb91bf225d07954dcf32204d"
        },
        {
          "url": "https://git.kernel.org/stable/c/653500b400d5576940b7429690f7197199ddcc82"
        },
        {
          "url": "https://git.kernel.org/stable/c/1085f5080647f0c9f357c270a537869191f7f2a1"
        }
      ],
      "title": "soc: brcmstb: pm-arm: Fix refcount leak and __iomem leak bugs",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48693",
    "datePublished": "2024-05-03T15:05:46.868Z",
    "dateReserved": "2024-05-03T14:55:07.145Z",
    "dateUpdated": "2025-05-04T08:21:11.817Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26679 (GCVE-0-2024-26679)

Vulnerability from cvelistv5

Published

2024-04-02 07:01

Modified

2025-05-04 12:54

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: inet: read sk->sk_family once in inet_recv_error() inet_recv_error() is called without holding the socket lock. IPv6 socket could mutate to IPv4 with IPV6_ADDRFORM socket option and trigger a KCSAN warning.

References

►

URL

Tags

	https://git.kernel.org/stable/c/caa064c3c2394d03e289ebd6b0be5102eb8a5b40
	https://git.kernel.org/stable/c/5993f121fbc01dc2d734f0ff2628009b258fb1dd
	https://git.kernel.org/stable/c/88081ba415224cf413101def4343d660f56d082b
	https://git.kernel.org/stable/c/3266e638ba5cc1165f5e6989eb8c0720f1cc4b41
	https://git.kernel.org/stable/c/54538752216bf89ee88d47ad07802063a498c299
	https://git.kernel.org/stable/c/4a5e31bdd3c1702b520506d9cf8c41085f75c7f2
	https://git.kernel.org/stable/c/307fa8a75ab7423fa5c73573ec3d192de5027830
	https://git.kernel.org/stable/c/eef00a82c568944f113f2de738156ac591bbd5cd

Impacted products

Vendor

Product

Version

►

Linux

Version: f4713a3dfad045d46afcb9c2a7d0bba288920ed4
Version: f4713a3dfad045d46afcb9c2a7d0bba288920ed4
Version: f4713a3dfad045d46afcb9c2a7d0bba288920ed4
Version: f4713a3dfad045d46afcb9c2a7d0bba288920ed4
Version: f4713a3dfad045d46afcb9c2a7d0bba288920ed4
Version: f4713a3dfad045d46afcb9c2a7d0bba288920ed4
Version: f4713a3dfad045d46afcb9c2a7d0bba288920ed4
Version: f4713a3dfad045d46afcb9c2a7d0bba288920ed4
Version: 433337f9c00cac447d020922f59237273f5d92be

Linux

Version: 3.18

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26679",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-02T18:38:38.646941Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:48:50.171Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:12.659Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/caa064c3c2394d03e289ebd6b0be5102eb8a5b40"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5993f121fbc01dc2d734f0ff2628009b258fb1dd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/88081ba415224cf413101def4343d660f56d082b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3266e638ba5cc1165f5e6989eb8c0720f1cc4b41"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/54538752216bf89ee88d47ad07802063a498c299"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4a5e31bdd3c1702b520506d9cf8c41085f75c7f2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/307fa8a75ab7423fa5c73573ec3d192de5027830"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/eef00a82c568944f113f2de738156ac591bbd5cd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/ipv4/af_inet.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "caa064c3c2394d03e289ebd6b0be5102eb8a5b40",
              "status": "affected",
              "version": "f4713a3dfad045d46afcb9c2a7d0bba288920ed4",
              "versionType": "git"
            },
            {
              "lessThan": "5993f121fbc01dc2d734f0ff2628009b258fb1dd",
              "status": "affected",
              "version": "f4713a3dfad045d46afcb9c2a7d0bba288920ed4",
              "versionType": "git"
            },
            {
              "lessThan": "88081ba415224cf413101def4343d660f56d082b",
              "status": "affected",
              "version": "f4713a3dfad045d46afcb9c2a7d0bba288920ed4",
              "versionType": "git"
            },
            {
              "lessThan": "3266e638ba5cc1165f5e6989eb8c0720f1cc4b41",
              "status": "affected",
              "version": "f4713a3dfad045d46afcb9c2a7d0bba288920ed4",
              "versionType": "git"
            },
            {
              "lessThan": "54538752216bf89ee88d47ad07802063a498c299",
              "status": "affected",
              "version": "f4713a3dfad045d46afcb9c2a7d0bba288920ed4",
              "versionType": "git"
            },
            {
              "lessThan": "4a5e31bdd3c1702b520506d9cf8c41085f75c7f2",
              "status": "affected",
              "version": "f4713a3dfad045d46afcb9c2a7d0bba288920ed4",
              "versionType": "git"
            },
            {
              "lessThan": "307fa8a75ab7423fa5c73573ec3d192de5027830",
              "status": "affected",
              "version": "f4713a3dfad045d46afcb9c2a7d0bba288920ed4",
              "versionType": "git"
            },
            {
              "lessThan": "eef00a82c568944f113f2de738156ac591bbd5cd",
              "status": "affected",
              "version": "f4713a3dfad045d46afcb9c2a7d0bba288920ed4",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "433337f9c00cac447d020922f59237273f5d92be",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/ipv4/af_inet.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.18"
            },
            {
              "lessThan": "3.18",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.307",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.269",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.78",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.17",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.307",
                  "versionStartIncluding": "3.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.269",
                  "versionStartIncluding": "3.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "versionStartIncluding": "3.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "3.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.78",
                  "versionStartIncluding": "3.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.17",
                  "versionStartIncluding": "3.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.5",
                  "versionStartIncluding": "3.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "3.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "3.17.7",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ninet: read sk-\u003esk_family once in inet_recv_error()\n\ninet_recv_error() is called without holding the socket lock.\n\nIPv6 socket could mutate to IPv4 with IPV6_ADDRFORM\nsocket option and trigger a KCSAN warning."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T12:54:25.209Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/caa064c3c2394d03e289ebd6b0be5102eb8a5b40"
        },
        {
          "url": "https://git.kernel.org/stable/c/5993f121fbc01dc2d734f0ff2628009b258fb1dd"
        },
        {
          "url": "https://git.kernel.org/stable/c/88081ba415224cf413101def4343d660f56d082b"
        },
        {
          "url": "https://git.kernel.org/stable/c/3266e638ba5cc1165f5e6989eb8c0720f1cc4b41"
        },
        {
          "url": "https://git.kernel.org/stable/c/54538752216bf89ee88d47ad07802063a498c299"
        },
        {
          "url": "https://git.kernel.org/stable/c/4a5e31bdd3c1702b520506d9cf8c41085f75c7f2"
        },
        {
          "url": "https://git.kernel.org/stable/c/307fa8a75ab7423fa5c73573ec3d192de5027830"
        },
        {
          "url": "https://git.kernel.org/stable/c/eef00a82c568944f113f2de738156ac591bbd5cd"
        }
      ],
      "title": "inet: read sk-\u003esk_family once in inet_recv_error()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26679",
    "datePublished": "2024-04-02T07:01:43.133Z",
    "dateReserved": "2024-02-19T14:20:24.152Z",
    "dateUpdated": "2025-05-04T12:54:25.209Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48659 (GCVE-0-2022-48659)

Vulnerability from cvelistv5

Published

2024-04-28 13:01

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: mm/slub: fix to return errno if kmalloc() fails In create_unique_id(), kmalloc(, GFP_KERNEL) can fail due to out-of-memory, if it fails, return errno correctly rather than triggering panic via BUG_ON(); kernel BUG at mm/slub.c:5893! Internal error: Oops - BUG: 0 [#1] PREEMPT SMP Call trace: sysfs_slab_add+0x258/0x260 mm/slub.c:5973 __kmem_cache_create+0x60/0x118 mm/slub.c:4899 create_cache mm/slab_common.c:229 [inline] kmem_cache_create_usercopy+0x19c/0x31c mm/slab_common.c:335 kmem_cache_create+0x1c/0x28 mm/slab_common.c:390 f2fs_kmem_cache_create fs/f2fs/f2fs.h:2766 [inline] f2fs_init_xattr_caches+0x78/0xb4 fs/f2fs/xattr.c:808 f2fs_fill_super+0x1050/0x1e0c fs/f2fs/super.c:4149 mount_bdev+0x1b8/0x210 fs/super.c:1400 f2fs_mount+0x44/0x58 fs/f2fs/super.c:4512 legacy_get_tree+0x30/0x74 fs/fs_context.c:610 vfs_get_tree+0x40/0x140 fs/super.c:1530 do_new_mount+0x1dc/0x4e4 fs/namespace.c:3040 path_mount+0x358/0x914 fs/namespace.c:3370 do_mount fs/namespace.c:3383 [inline] __do_sys_mount fs/namespace.c:3591 [inline] __se_sys_mount fs/namespace.c:3568 [inline] __arm64_sys_mount+0x2f8/0x408 fs/namespace.c:3568

References

►

URL

Tags

	https://git.kernel.org/stable/c/e9219fa63c5c25804af82c7aa54d1ec770ebe457
	https://git.kernel.org/stable/c/a1d83a19cec3bfeb2b3547a1f7631e432a766d1c
	https://git.kernel.org/stable/c/e996821717c5cf8aa1e1abdb6b3d900a231e3755
	https://git.kernel.org/stable/c/016b150992eebc32c4a18f783cf2bb6e2545a3d9
	https://git.kernel.org/stable/c/379ac7905ff3f0a6a4e507d3e9f710ec4fab9124
	https://git.kernel.org/stable/c/2d6e55e0c03804e1e227b80a5746e086d6c6696c
	https://git.kernel.org/stable/c/02bcd951aa3c2cea95fb241c20802e9501940296
	https://git.kernel.org/stable/c/7e9c323c52b379d261a72dc7bd38120a761a93cd

Impacted products

Vendor

Product

Version

►

Linux

Version: 81819f0fc8285a2a5a921c019e3e3d7b6169d225
Version: 81819f0fc8285a2a5a921c019e3e3d7b6169d225
Version: 81819f0fc8285a2a5a921c019e3e3d7b6169d225
Version: 81819f0fc8285a2a5a921c019e3e3d7b6169d225
Version: 81819f0fc8285a2a5a921c019e3e3d7b6169d225
Version: 81819f0fc8285a2a5a921c019e3e3d7b6169d225
Version: 81819f0fc8285a2a5a921c019e3e3d7b6169d225
Version: 81819f0fc8285a2a5a921c019e3e3d7b6169d225

Linux

Version: 2.6.22

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48659",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-06T19:01:53.160103Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-06T19:02:03.283Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.800Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e9219fa63c5c25804af82c7aa54d1ec770ebe457"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a1d83a19cec3bfeb2b3547a1f7631e432a766d1c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e996821717c5cf8aa1e1abdb6b3d900a231e3755"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/016b150992eebc32c4a18f783cf2bb6e2545a3d9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/379ac7905ff3f0a6a4e507d3e9f710ec4fab9124"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2d6e55e0c03804e1e227b80a5746e086d6c6696c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/02bcd951aa3c2cea95fb241c20802e9501940296"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7e9c323c52b379d261a72dc7bd38120a761a93cd"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "mm/slub.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e9219fa63c5c25804af82c7aa54d1ec770ebe457",
              "status": "affected",
              "version": "81819f0fc8285a2a5a921c019e3e3d7b6169d225",
              "versionType": "git"
            },
            {
              "lessThan": "a1d83a19cec3bfeb2b3547a1f7631e432a766d1c",
              "status": "affected",
              "version": "81819f0fc8285a2a5a921c019e3e3d7b6169d225",
              "versionType": "git"
            },
            {
              "lessThan": "e996821717c5cf8aa1e1abdb6b3d900a231e3755",
              "status": "affected",
              "version": "81819f0fc8285a2a5a921c019e3e3d7b6169d225",
              "versionType": "git"
            },
            {
              "lessThan": "016b150992eebc32c4a18f783cf2bb6e2545a3d9",
              "status": "affected",
              "version": "81819f0fc8285a2a5a921c019e3e3d7b6169d225",
              "versionType": "git"
            },
            {
              "lessThan": "379ac7905ff3f0a6a4e507d3e9f710ec4fab9124",
              "status": "affected",
              "version": "81819f0fc8285a2a5a921c019e3e3d7b6169d225",
              "versionType": "git"
            },
            {
              "lessThan": "2d6e55e0c03804e1e227b80a5746e086d6c6696c",
              "status": "affected",
              "version": "81819f0fc8285a2a5a921c019e3e3d7b6169d225",
              "versionType": "git"
            },
            {
              "lessThan": "02bcd951aa3c2cea95fb241c20802e9501940296",
              "status": "affected",
              "version": "81819f0fc8285a2a5a921c019e3e3d7b6169d225",
              "versionType": "git"
            },
            {
              "lessThan": "7e9c323c52b379d261a72dc7bd38120a761a93cd",
              "status": "affected",
              "version": "81819f0fc8285a2a5a921c019e3e3d7b6169d225",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "mm/slub.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.22"
            },
            {
              "lessThan": "2.6.22",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.9.*",
              "status": "unaffected",
              "version": "4.9.330",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.295",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.260",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.9.330",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.295",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.260",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/slub: fix to return errno if kmalloc() fails\n\nIn create_unique_id(), kmalloc(, GFP_KERNEL) can fail due to\nout-of-memory, if it fails, return errno correctly rather than\ntriggering panic via BUG_ON();\n\nkernel BUG at mm/slub.c:5893!\nInternal error: Oops - BUG: 0 [#1] PREEMPT SMP\n\nCall trace:\n sysfs_slab_add+0x258/0x260 mm/slub.c:5973\n __kmem_cache_create+0x60/0x118 mm/slub.c:4899\n create_cache mm/slab_common.c:229 [inline]\n kmem_cache_create_usercopy+0x19c/0x31c mm/slab_common.c:335\n kmem_cache_create+0x1c/0x28 mm/slab_common.c:390\n f2fs_kmem_cache_create fs/f2fs/f2fs.h:2766 [inline]\n f2fs_init_xattr_caches+0x78/0xb4 fs/f2fs/xattr.c:808\n f2fs_fill_super+0x1050/0x1e0c fs/f2fs/super.c:4149\n mount_bdev+0x1b8/0x210 fs/super.c:1400\n f2fs_mount+0x44/0x58 fs/f2fs/super.c:4512\n legacy_get_tree+0x30/0x74 fs/fs_context.c:610\n vfs_get_tree+0x40/0x140 fs/super.c:1530\n do_new_mount+0x1dc/0x4e4 fs/namespace.c:3040\n path_mount+0x358/0x914 fs/namespace.c:3370\n do_mount fs/namespace.c:3383 [inline]\n __do_sys_mount fs/namespace.c:3591 [inline]\n __se_sys_mount fs/namespace.c:3568 [inline]\n __arm64_sys_mount+0x2f8/0x408 fs/namespace.c:3568"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:44.532Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e9219fa63c5c25804af82c7aa54d1ec770ebe457"
        },
        {
          "url": "https://git.kernel.org/stable/c/a1d83a19cec3bfeb2b3547a1f7631e432a766d1c"
        },
        {
          "url": "https://git.kernel.org/stable/c/e996821717c5cf8aa1e1abdb6b3d900a231e3755"
        },
        {
          "url": "https://git.kernel.org/stable/c/016b150992eebc32c4a18f783cf2bb6e2545a3d9"
        },
        {
          "url": "https://git.kernel.org/stable/c/379ac7905ff3f0a6a4e507d3e9f710ec4fab9124"
        },
        {
          "url": "https://git.kernel.org/stable/c/2d6e55e0c03804e1e227b80a5746e086d6c6696c"
        },
        {
          "url": "https://git.kernel.org/stable/c/02bcd951aa3c2cea95fb241c20802e9501940296"
        },
        {
          "url": "https://git.kernel.org/stable/c/7e9c323c52b379d261a72dc7bd38120a761a93cd"
        }
      ],
      "title": "mm/slub: fix to return errno if kmalloc() fails",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48659",
    "datePublished": "2024-04-28T13:01:17.536Z",
    "dateReserved": "2024-02-25T13:44:28.317Z",
    "dateUpdated": "2025-05-04T08:20:44.532Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48686 (GCVE-0-2022-48686)

Vulnerability from cvelistv5

Published

2024-05-03 14:59

Modified

2025-05-04 08:21

Severity ?

6.2 (Medium) - CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix UAF when detecting digest errors We should also bail from the io_work loop when we set rd_enabled to true, so we don't attempt to read data from the socket when the TCP stream is already out-of-sync or corrupted.

References

►

URL

Tags

	https://git.kernel.org/stable/c/19816a0214684f70b49b25075ff8c402fdd611d3
	https://git.kernel.org/stable/c/5914fa32ef1b7766fea933f9eed94ac5c00aa7ff
	https://git.kernel.org/stable/c/13c80a6c112467bab5e44d090767930555fc17a5
	https://git.kernel.org/stable/c/c3eb461aa56e6fa94fb80442ba2586bd223a8886
	https://git.kernel.org/stable/c/160f3549a907a50e51a8518678ba2dcf2541abea

Impacted products

Vendor

Product

Version

►

Linux

Version: 3f2304f8c6d6ed97849057bd16fee99e434ca796
Version: 3f2304f8c6d6ed97849057bd16fee99e434ca796
Version: 3f2304f8c6d6ed97849057bd16fee99e434ca796
Version: 3f2304f8c6d6ed97849057bd16fee99e434ca796
Version: 3f2304f8c6d6ed97849057bd16fee99e434ca796

Linux

Version: 5.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 6.2,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48686",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:39:58.605083Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-21T21:25:46.756Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.855Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/19816a0214684f70b49b25075ff8c402fdd611d3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5914fa32ef1b7766fea933f9eed94ac5c00aa7ff"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/13c80a6c112467bab5e44d090767930555fc17a5"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c3eb461aa56e6fa94fb80442ba2586bd223a8886"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/160f3549a907a50e51a8518678ba2dcf2541abea"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/nvme/host/tcp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "19816a0214684f70b49b25075ff8c402fdd611d3",
              "status": "affected",
              "version": "3f2304f8c6d6ed97849057bd16fee99e434ca796",
              "versionType": "git"
            },
            {
              "lessThan": "5914fa32ef1b7766fea933f9eed94ac5c00aa7ff",
              "status": "affected",
              "version": "3f2304f8c6d6ed97849057bd16fee99e434ca796",
              "versionType": "git"
            },
            {
              "lessThan": "13c80a6c112467bab5e44d090767930555fc17a5",
              "status": "affected",
              "version": "3f2304f8c6d6ed97849057bd16fee99e434ca796",
              "versionType": "git"
            },
            {
              "lessThan": "c3eb461aa56e6fa94fb80442ba2586bd223a8886",
              "status": "affected",
              "version": "3f2304f8c6d6ed97849057bd16fee99e434ca796",
              "versionType": "git"
            },
            {
              "lessThan": "160f3549a907a50e51a8518678ba2dcf2541abea",
              "status": "affected",
              "version": "3f2304f8c6d6ed97849057bd16fee99e434ca796",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/nvme/host/tcp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.0"
            },
            {
              "lessThan": "5.0",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.143",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.213",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.143",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnvme-tcp: fix UAF when detecting digest errors\n\nWe should also bail from the io_work loop when we set rd_enabled to true,\nso we don\u0027t attempt to read data from the socket when the TCP stream is\nalready out-of-sync or corrupted."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:21:04.017Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/19816a0214684f70b49b25075ff8c402fdd611d3"
        },
        {
          "url": "https://git.kernel.org/stable/c/5914fa32ef1b7766fea933f9eed94ac5c00aa7ff"
        },
        {
          "url": "https://git.kernel.org/stable/c/13c80a6c112467bab5e44d090767930555fc17a5"
        },
        {
          "url": "https://git.kernel.org/stable/c/c3eb461aa56e6fa94fb80442ba2586bd223a8886"
        },
        {
          "url": "https://git.kernel.org/stable/c/160f3549a907a50e51a8518678ba2dcf2541abea"
        }
      ],
      "title": "nvme-tcp: fix UAF when detecting digest errors",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48686",
    "datePublished": "2024-05-03T14:59:10.472Z",
    "dateReserved": "2024-05-03T14:55:07.143Z",
    "dateUpdated": "2025-05-04T08:21:04.017Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-22099 (GCVE-0-2024-22099)

Vulnerability from cvelistv5

Published

2024-01-25 07:02

Modified

2025-06-05 19:44

Severity ?

6.3 (Medium) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

CWE

CWE-476 - NULL Pointer Dereference

Summary

NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C. This issue affects Linux kernel: v2.6.12-rc2.

References

►

URL

Tags

	https://bugzilla.openanolis.cn/show_bug.cgi?id=7956
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB/
	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE/
	https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
	https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Impacted products

	Vendor	Product	Version
	Linux	Linux kernel	Version: v2.6.12-rc2 < v6.8-rc1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-01T22:35:34.715Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://bugzilla.openanolis.cn/show_bug.cgi?id=7956"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-22099",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-01-29T19:53:29.673847Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-476",
                "description": "CWE-476 NULL Pointer Dereference",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-05T19:44:19.805Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://mirrors.openanolis.cn/anolis/",
          "defaultStatus": "unaffected",
          "modules": [
            "net",
            "bluetooth"
          ],
          "packageName": "kernel",
          "platforms": [
            "Linux",
            "x86",
            "ARM"
          ],
          "product": "Linux kernel",
          "programFiles": [
            "https://gitee.com/anolis/cloud-kernel/blob/release-5.10/net/bluetooth/rfcomm/core.c"
          ],
          "repo": "https://gitee.com/anolis/cloud-kernel.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "v6.8-rc1",
              "status": "affected",
              "version": "v2.6.12-rc2",
              "versionType": "custom"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Yuxuan-Hu \u003c20373622@buaa.edu.cn\u003e"
        }
      ],
      "datePublic": "2024-01-19T03:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers.\u003cp\u003e This vulnerability is associated with program files \u003ctt\u003e/net/bluetooth/rfcomm/core.C\u003c/tt\u003e.\u003c/p\u003e\u003cp\u003eThis issue affects Linux kernel: v2.6.12-rc2.\u003c/p\u003e"
            }
          ],
          "value": "NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C.\n\nThis issue affects Linux kernel: v2.6.12-rc2."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-100",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-100 Overflow Buffers"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-476",
              "description": "CWE-476 NULL Pointer Dereference",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-06-27T12:08:47.749Z",
        "orgId": "cb8f1db9-b4b1-487b-a760-f65c4f368d8e",
        "shortName": "Anolis"
      },
      "references": [
        {
          "url": "https://bugzilla.openanolis.cn/show_bug.cgi?id=7956"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IVVYSTEVMPYGF6GDSOD44MUXZXAZHOHB/"
        },
        {
          "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSXNF4RLEFLH35BFUQGYXRRVHHUIVBAE/"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
        },
        {
          "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=6ec00b0737fe\"\u003ehttps://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=6ec00b0737fe\u003c/a\u003e\u003cbr\u003e"
            }
          ],
          "value": "https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/?id=6ec00b0737fe https://git.kernel.org/pub/scm/linux/kernel/git/bluetooth/bluetooth-next.git/commit/"
        }
      ],
      "source": {
        "advisory": "Not yet",
        "discovery": "INTERNAL"
      },
      "title": "NULL pointer deference in rfcomm_check_security in Linux kernel",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cb8f1db9-b4b1-487b-a760-f65c4f368d8e",
    "assignerShortName": "Anolis",
    "cveId": "CVE-2024-22099",
    "datePublished": "2024-01-25T07:02:59.928Z",
    "dateReserved": "2024-01-15T09:44:45.533Z",
    "dateUpdated": "2025-06-05T19:44:19.805Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26783 (GCVE-0-2024-26783)

Vulnerability from cvelistv5

Published

2024-04-04 08:20

Modified

2025-05-22 12:39

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index With numa balancing on, when a numa system is running where a numa node doesn't have its local memory so it has no managed zones, the following oops has been observed. It's because wakeup_kswapd() is called with a wrong zone index, -1. Fixed it by checking the index before calling wakeup_kswapd(). > BUG: unable to handle page fault for address: 00000000000033f3 > #PF: supervisor read access in kernel mode > #PF: error_code(0x0000) - not-present page > PGD 0 P4D 0 > Oops: 0000 [#1] PREEMPT SMP NOPTI > CPU: 2 PID: 895 Comm: masim Not tainted 6.6.0-dirty #255 > Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS > rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014 > RIP: 0010:wakeup_kswapd (./linux/mm/vmscan.c:7812) > Code: (omitted) > RSP: 0000:ffffc90004257d58 EFLAGS: 00010286 > RAX: ffffffffffffffff RBX: ffff88883fff0480 RCX: 0000000000000003 > RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88883fff0480 > RBP: ffffffffffffffff R08: ff0003ffffffffff R09: ffffffffffffffff > R10: ffff888106c95540 R11: 0000000055555554 R12: 0000000000000003 > R13: 0000000000000000 R14: 0000000000000000 R15: ffff88883fff0940 > FS: 00007fc4b8124740(0000) GS:ffff888827c00000(0000) knlGS:0000000000000000 > CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 > CR2: 00000000000033f3 CR3: 000000026cc08004 CR4: 0000000000770ee0 > DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 > DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 > PKRU: 55555554 > Call Trace: > <TASK> > ? __die > ? page_fault_oops > ? __pte_offset_map_lock > ? exc_page_fault > ? asm_exc_page_fault > ? wakeup_kswapd > migrate_misplaced_page > __handle_mm_fault > handle_mm_fault > do_user_addr_fault > exc_page_fault > asm_exc_page_fault > RIP: 0033:0x55b897ba0808 > Code: (omitted) > RSP: 002b:00007ffeefa821a0 EFLAGS: 00010287 > RAX: 000055b89983acd0 RBX: 00007ffeefa823f8 RCX: 000055b89983acd0 > RDX: 00007fc2f8122010 RSI: 0000000000020000 RDI: 000055b89983acd0 > RBP: 00007ffeefa821a0 R08: 0000000000000037 R09: 0000000000000075 > R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 > R13: 00007ffeefa82410 R14: 000055b897ba5dd8 R15: 00007fc4b8340000 > </TASK>

References

►

URL

Tags

	https://git.kernel.org/stable/c/e5ec1c24e71dbf144677a975d6ba91043c2193db
	https://git.kernel.org/stable/c/d6159bd4c00594249e305bfe02304c67c506264e
	https://git.kernel.org/stable/c/bdd21eed8b72f9e28d6c279f6db258e090c79080
	https://git.kernel.org/stable/c/2774f256e7c0219e2b0a0894af1c76bdabc4f974

Impacted products

Vendor

Product

Version

►

Linux

Version: c574bbe917036c8968b984c82c7b13194fe5ce98
Version: c574bbe917036c8968b984c82c7b13194fe5ce98
Version: c574bbe917036c8968b984c82c7b13194fe5ce98
Version: c574bbe917036c8968b984c82c7b13194fe5ce98

Linux

Version: 5.18

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26783",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-04T16:20:18.928013Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:48:21.039Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.473Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d6159bd4c00594249e305bfe02304c67c506264e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bdd21eed8b72f9e28d6c279f6db258e090c79080"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2774f256e7c0219e2b0a0894af1c76bdabc4f974"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "mm/migrate.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e5ec1c24e71dbf144677a975d6ba91043c2193db",
              "status": "affected",
              "version": "c574bbe917036c8968b984c82c7b13194fe5ce98",
              "versionType": "git"
            },
            {
              "lessThan": "d6159bd4c00594249e305bfe02304c67c506264e",
              "status": "affected",
              "version": "c574bbe917036c8968b984c82c7b13194fe5ce98",
              "versionType": "git"
            },
            {
              "lessThan": "bdd21eed8b72f9e28d6c279f6db258e090c79080",
              "status": "affected",
              "version": "c574bbe917036c8968b984c82c7b13194fe5ce98",
              "versionType": "git"
            },
            {
              "lessThan": "2774f256e7c0219e2b0a0894af1c76bdabc4f974",
              "status": "affected",
              "version": "c574bbe917036c8968b984c82c7b13194fe5ce98",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "mm/migrate.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.18"
            },
            {
              "lessThan": "5.18",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.140",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.22",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.140",
                  "versionStartIncluding": "5.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.22",
                  "versionStartIncluding": "5.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.9",
                  "versionStartIncluding": "5.18",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.18",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index\n\nWith numa balancing on, when a numa system is running where a numa node\ndoesn\u0027t have its local memory so it has no managed zones, the following\noops has been observed.  It\u0027s because wakeup_kswapd() is called with a\nwrong zone index, -1.  Fixed it by checking the index before calling\nwakeup_kswapd().\n\n\u003e BUG: unable to handle page fault for address: 00000000000033f3\n\u003e #PF: supervisor read access in kernel mode\n\u003e #PF: error_code(0x0000) - not-present page\n\u003e PGD 0 P4D 0\n\u003e Oops: 0000 [#1] PREEMPT SMP NOPTI\n\u003e CPU: 2 PID: 895 Comm: masim Not tainted 6.6.0-dirty #255\n\u003e Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS\n\u003e    rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014\n\u003e RIP: 0010:wakeup_kswapd (./linux/mm/vmscan.c:7812)\n\u003e Code: (omitted)\n\u003e RSP: 0000:ffffc90004257d58 EFLAGS: 00010286\n\u003e RAX: ffffffffffffffff RBX: ffff88883fff0480 RCX: 0000000000000003\n\u003e RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88883fff0480\n\u003e RBP: ffffffffffffffff R08: ff0003ffffffffff R09: ffffffffffffffff\n\u003e R10: ffff888106c95540 R11: 0000000055555554 R12: 0000000000000003\n\u003e R13: 0000000000000000 R14: 0000000000000000 R15: ffff88883fff0940\n\u003e FS:  00007fc4b8124740(0000) GS:ffff888827c00000(0000) knlGS:0000000000000000\n\u003e CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n\u003e CR2: 00000000000033f3 CR3: 000000026cc08004 CR4: 0000000000770ee0\n\u003e DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n\u003e DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n\u003e PKRU: 55555554\n\u003e Call Trace:\n\u003e  \u003cTASK\u003e\n\u003e ? __die\n\u003e ? page_fault_oops\n\u003e ? __pte_offset_map_lock\n\u003e ? exc_page_fault\n\u003e ? asm_exc_page_fault\n\u003e ? wakeup_kswapd\n\u003e migrate_misplaced_page\n\u003e __handle_mm_fault\n\u003e handle_mm_fault\n\u003e do_user_addr_fault\n\u003e exc_page_fault\n\u003e asm_exc_page_fault\n\u003e RIP: 0033:0x55b897ba0808\n\u003e Code: (omitted)\n\u003e RSP: 002b:00007ffeefa821a0 EFLAGS: 00010287\n\u003e RAX: 000055b89983acd0 RBX: 00007ffeefa823f8 RCX: 000055b89983acd0\n\u003e RDX: 00007fc2f8122010 RSI: 0000000000020000 RDI: 000055b89983acd0\n\u003e RBP: 00007ffeefa821a0 R08: 0000000000000037 R09: 0000000000000075\n\u003e R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000\n\u003e R13: 00007ffeefa82410 R14: 000055b897ba5dd8 R15: 00007fc4b8340000\n\u003e  \u003c/TASK\u003e"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-22T12:39:30.387Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e5ec1c24e71dbf144677a975d6ba91043c2193db"
        },
        {
          "url": "https://git.kernel.org/stable/c/d6159bd4c00594249e305bfe02304c67c506264e"
        },
        {
          "url": "https://git.kernel.org/stable/c/bdd21eed8b72f9e28d6c279f6db258e090c79080"
        },
        {
          "url": "https://git.kernel.org/stable/c/2774f256e7c0219e2b0a0894af1c76bdabc4f974"
        }
      ],
      "title": "mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26783",
    "datePublished": "2024-04-04T08:20:17.118Z",
    "dateReserved": "2024-02-19T14:20:24.177Z",
    "dateUpdated": "2025-05-22T12:39:30.387Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48698 (GCVE-0-2022-48698)

Vulnerability from cvelistv5

Published

2024-05-03 15:11

Modified

2025-05-21 08:43

Severity ?

5.3 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix memory leak when using debugfs_lookup() When calling debugfs_lookup() the result must have dput() called on it, otherwise the memory will leak over time. Fix this up by properly calling dput().

References

►

URL

Tags

	https://git.kernel.org/stable/c/58acd2ebae034db3bacf38708f508fbd12ae2e54
	https://git.kernel.org/stable/c/3a6279d243cb035eaaff1450980b40cf19748f05
	https://git.kernel.org/stable/c/cbfac7fa491651c57926c99edeb7495c6c1aeac2

Impacted products

Vendor

Product

Version

►

Linux

Version: 86bc221918925a0bbb49043e3936e898e009b43b
Version: 86bc221918925a0bbb49043e3936e898e009b43b
Version: 86bc221918925a0bbb49043e3936e898e009b43b

Linux

Version: 5.13

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "LOW",
              "baseScore": 5.3,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "LOW",
              "integrityImpact": "LOW",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2022-48698",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T20:32:35.974664Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-30T15:54:10.791Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.744Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/58acd2ebae034db3bacf38708f508fbd12ae2e54"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3a6279d243cb035eaaff1450980b40cf19748f05"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cbfac7fa491651c57926c99edeb7495c6c1aeac2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "58acd2ebae034db3bacf38708f508fbd12ae2e54",
              "status": "affected",
              "version": "86bc221918925a0bbb49043e3936e898e009b43b",
              "versionType": "git"
            },
            {
              "lessThan": "3a6279d243cb035eaaff1450980b40cf19748f05",
              "status": "affected",
              "version": "86bc221918925a0bbb49043e3936e898e009b43b",
              "versionType": "git"
            },
            {
              "lessThan": "cbfac7fa491651c57926c99edeb7495c6c1aeac2",
              "status": "affected",
              "version": "86bc221918925a0bbb49043e3936e898e009b43b",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.13"
            },
            {
              "lessThan": "5.13",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.68",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.9",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.68",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.9",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.13",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amd/display: fix memory leak when using debugfs_lookup()\n\nWhen calling debugfs_lookup() the result must have dput() called on it,\notherwise the memory will leak over time.  Fix this up by properly\ncalling dput()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-21T08:43:48.793Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/58acd2ebae034db3bacf38708f508fbd12ae2e54"
        },
        {
          "url": "https://git.kernel.org/stable/c/3a6279d243cb035eaaff1450980b40cf19748f05"
        },
        {
          "url": "https://git.kernel.org/stable/c/cbfac7fa491651c57926c99edeb7495c6c1aeac2"
        }
      ],
      "title": "drm/amd/display: fix memory leak when using debugfs_lookup()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48698",
    "datePublished": "2024-05-03T15:11:37.455Z",
    "dateReserved": "2024-05-03T14:55:07.145Z",
    "dateUpdated": "2025-05-21T08:43:48.793Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52585 (GCVE-0-2023-52585)

Vulnerability from cvelistv5

Published

2024-03-06 06:45

Modified

2025-05-04 07:39

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper() Return invalid error code -EINVAL for invalid block id. Fixes the below: drivers/gpu/drm/amd/amdgpu/amdgpu_ras.c:1183 amdgpu_ras_query_error_status_helper() error: we previously assumed 'info' could be null (see line 1176)

References

►

URL

Tags

	https://git.kernel.org/stable/c/467139546f3fb93913de064461b1a43a212d7626
	https://git.kernel.org/stable/c/0eb296233f86750102aa43b97879b8d8311f249a
	https://git.kernel.org/stable/c/7e6d6f27522bcd037856234b720ff607b9c4a09b
	https://git.kernel.org/stable/c/92cb363d16ac1e41c9764cdb513d0e89a6ff4915
	https://git.kernel.org/stable/c/c364e7a34c85c2154fb2e47561965d5b5a0b69b1
	https://git.kernel.org/stable/c/195a6289282e039024ad30ba66e6f94a4d0fbe49
	https://git.kernel.org/stable/c/b8d55a90fd55b767c25687747e2b24abd1ef8680

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-52585",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-03-06T15:58:01.323059Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-476",
                "description": "CWE-476 NULL Pointer Dereference",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-06T16:09:44.599Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-09-12T16:02:56.000Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/467139546f3fb93913de064461b1a43a212d7626"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0eb296233f86750102aa43b97879b8d8311f249a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7e6d6f27522bcd037856234b720ff607b9c4a09b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/92cb363d16ac1e41c9764cdb513d0e89a6ff4915"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c364e7a34c85c2154fb2e47561965d5b5a0b69b1"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/195a6289282e039024ad30ba66e6f94a4d0fbe49"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b8d55a90fd55b767c25687747e2b24abd1ef8680"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00019.html"
          },
          {
            "url": "https://security.netapp.com/advisory/ntap-20240912-0009/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdgpu/amdgpu_ras.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "467139546f3fb93913de064461b1a43a212d7626",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "0eb296233f86750102aa43b97879b8d8311f249a",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "7e6d6f27522bcd037856234b720ff607b9c4a09b",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "92cb363d16ac1e41c9764cdb513d0e89a6ff4915",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "c364e7a34c85c2154fb2e47561965d5b5a0b69b1",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "195a6289282e039024ad30ba66e6f94a4d0fbe49",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b8d55a90fd55b767c25687747e2b24abd1ef8680",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdgpu/amdgpu_ras.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.277",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.160",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.92",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.32",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.277",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.218",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.160",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.92",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.32",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ndrm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper()\n\nReturn invalid error code -EINVAL for invalid block id.\n\nFixes the below:\n\ndrivers/gpu/drm/amd/amdgpu/amdgpu_ras.c:1183 amdgpu_ras_query_error_status_helper() error: we previously assumed \u0027info\u0027 could be null (see line 1176)"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:39:15.124Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/467139546f3fb93913de064461b1a43a212d7626"
        },
        {
          "url": "https://git.kernel.org/stable/c/0eb296233f86750102aa43b97879b8d8311f249a"
        },
        {
          "url": "https://git.kernel.org/stable/c/7e6d6f27522bcd037856234b720ff607b9c4a09b"
        },
        {
          "url": "https://git.kernel.org/stable/c/92cb363d16ac1e41c9764cdb513d0e89a6ff4915"
        },
        {
          "url": "https://git.kernel.org/stable/c/c364e7a34c85c2154fb2e47561965d5b5a0b69b1"
        },
        {
          "url": "https://git.kernel.org/stable/c/195a6289282e039024ad30ba66e6f94a4d0fbe49"
        },
        {
          "url": "https://git.kernel.org/stable/c/b8d55a90fd55b767c25687747e2b24abd1ef8680"
        }
      ],
      "title": "drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52585",
    "datePublished": "2024-03-06T06:45:20.389Z",
    "dateReserved": "2024-03-02T21:55:42.570Z",
    "dateUpdated": "2025-05-04T07:39:15.124Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48631 (GCVE-0-2022-48631)

Vulnerability from cvelistv5

Published

2024-04-28 12:59

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ext4: fix bug in extents parsing when eh_entries == 0 and eh_depth > 0 When walking through an inode extents, the ext4_ext_binsearch_idx() function assumes that the extent header has been previously validated. However, there are no checks that verify that the number of entries (eh->eh_entries) is non-zero when depth is > 0. And this will lead to problems because the EXT_FIRST_INDEX() and EXT_LAST_INDEX() will return garbage and result in this: [ 135.245946] ------------[ cut here ]------------ [ 135.247579] kernel BUG at fs/ext4/extents.c:2258! [ 135.249045] invalid opcode: 0000 [#1] PREEMPT SMP [ 135.250320] CPU: 2 PID: 238 Comm: tmp118 Not tainted 5.19.0-rc8+ #4 [ 135.252067] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.15.0-0-g2dd4b9b-rebuilt.opensuse.org 04/01/2014 [ 135.255065] RIP: 0010:ext4_ext_map_blocks+0xc20/0xcb0 [ 135.256475] Code: [ 135.261433] RSP: 0018:ffffc900005939f8 EFLAGS: 00010246 [ 135.262847] RAX: 0000000000000024 RBX: ffffc90000593b70 RCX: 0000000000000023 [ 135.264765] RDX: ffff8880038e5f10 RSI: 0000000000000003 RDI: ffff8880046e922c [ 135.266670] RBP: ffff8880046e9348 R08: 0000000000000001 R09: ffff888002ca580c [ 135.268576] R10: 0000000000002602 R11: 0000000000000000 R12: 0000000000000024 [ 135.270477] R13: 0000000000000000 R14: 0000000000000024 R15: 0000000000000000 [ 135.272394] FS: 00007fdabdc56740(0000) GS:ffff88807dd00000(0000) knlGS:0000000000000000 [ 135.274510] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 135.276075] CR2: 00007ffc26bd4f00 CR3: 0000000006261004 CR4: 0000000000170ea0 [ 135.277952] Call Trace: [ 135.278635] <TASK> [ 135.279247] ? preempt_count_add+0x6d/0xa0 [ 135.280358] ? percpu_counter_add_batch+0x55/0xb0 [ 135.281612] ? _raw_read_unlock+0x18/0x30 [ 135.282704] ext4_map_blocks+0x294/0x5a0 [ 135.283745] ? xa_load+0x6f/0xa0 [ 135.284562] ext4_mpage_readpages+0x3d6/0x770 [ 135.285646] read_pages+0x67/0x1d0 [ 135.286492] ? folio_add_lru+0x51/0x80 [ 135.287441] page_cache_ra_unbounded+0x124/0x170 [ 135.288510] filemap_get_pages+0x23d/0x5a0 [ 135.289457] ? path_openat+0xa72/0xdd0 [ 135.290332] filemap_read+0xbf/0x300 [ 135.291158] ? _raw_spin_lock_irqsave+0x17/0x40 [ 135.292192] new_sync_read+0x103/0x170 [ 135.293014] vfs_read+0x15d/0x180 [ 135.293745] ksys_read+0xa1/0xe0 [ 135.294461] do_syscall_64+0x3c/0x80 [ 135.295284] entry_SYSCALL_64_after_hwframe+0x46/0xb0 This patch simply adds an extra check in __ext4_ext_check(), verifying that eh_entries is not 0 when eh_depth is > 0.

References

►

URL

Tags

	https://git.kernel.org/stable/c/bb7eb3ca4b3b0d2c7872cf1a41c30f5e5bd65df0
	https://git.kernel.org/stable/c/958b0ee23f5ac106e7cc11472b71aa2ea9a033bc
	https://git.kernel.org/stable/c/be4df018c0be5ebecf1ca510feacc23be415cefc
	https://git.kernel.org/stable/c/2f5e9de15e4f55fbf56f22d4a2ce406246cc462d
	https://git.kernel.org/stable/c/29a5b8a137ac8eb410cc823653a29ac0e7b7e1b0

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48631",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T18:41:13.268987Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:16:47.424Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.530Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bb7eb3ca4b3b0d2c7872cf1a41c30f5e5bd65df0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/958b0ee23f5ac106e7cc11472b71aa2ea9a033bc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/be4df018c0be5ebecf1ca510feacc23be415cefc"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2f5e9de15e4f55fbf56f22d4a2ce406246cc462d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/29a5b8a137ac8eb410cc823653a29ac0e7b7e1b0"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/extents.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "bb7eb3ca4b3b0d2c7872cf1a41c30f5e5bd65df0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "958b0ee23f5ac106e7cc11472b71aa2ea9a033bc",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "be4df018c0be5ebecf1ca510feacc23be415cefc",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "2f5e9de15e4f55fbf56f22d4a2ce406246cc462d",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "29a5b8a137ac8eb410cc823653a29ac0e7b7e1b0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/extents.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix bug in extents parsing when eh_entries == 0 and eh_depth \u003e 0\n\nWhen walking through an inode extents, the ext4_ext_binsearch_idx() function\nassumes that the extent header has been previously validated.  However, there\nare no checks that verify that the number of entries (eh-\u003eeh_entries) is\nnon-zero when depth is \u003e 0.  And this will lead to problems because the\nEXT_FIRST_INDEX() and EXT_LAST_INDEX() will return garbage and result in this:\n\n[  135.245946] ------------[ cut here ]------------\n[  135.247579] kernel BUG at fs/ext4/extents.c:2258!\n[  135.249045] invalid opcode: 0000 [#1] PREEMPT SMP\n[  135.250320] CPU: 2 PID: 238 Comm: tmp118 Not tainted 5.19.0-rc8+ #4\n[  135.252067] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.15.0-0-g2dd4b9b-rebuilt.opensuse.org 04/01/2014\n[  135.255065] RIP: 0010:ext4_ext_map_blocks+0xc20/0xcb0\n[  135.256475] Code:\n[  135.261433] RSP: 0018:ffffc900005939f8 EFLAGS: 00010246\n[  135.262847] RAX: 0000000000000024 RBX: ffffc90000593b70 RCX: 0000000000000023\n[  135.264765] RDX: ffff8880038e5f10 RSI: 0000000000000003 RDI: ffff8880046e922c\n[  135.266670] RBP: ffff8880046e9348 R08: 0000000000000001 R09: ffff888002ca580c\n[  135.268576] R10: 0000000000002602 R11: 0000000000000000 R12: 0000000000000024\n[  135.270477] R13: 0000000000000000 R14: 0000000000000024 R15: 0000000000000000\n[  135.272394] FS:  00007fdabdc56740(0000) GS:ffff88807dd00000(0000) knlGS:0000000000000000\n[  135.274510] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n[  135.276075] CR2: 00007ffc26bd4f00 CR3: 0000000006261004 CR4: 0000000000170ea0\n[  135.277952] Call Trace:\n[  135.278635]  \u003cTASK\u003e\n[  135.279247]  ? preempt_count_add+0x6d/0xa0\n[  135.280358]  ? percpu_counter_add_batch+0x55/0xb0\n[  135.281612]  ? _raw_read_unlock+0x18/0x30\n[  135.282704]  ext4_map_blocks+0x294/0x5a0\n[  135.283745]  ? xa_load+0x6f/0xa0\n[  135.284562]  ext4_mpage_readpages+0x3d6/0x770\n[  135.285646]  read_pages+0x67/0x1d0\n[  135.286492]  ? folio_add_lru+0x51/0x80\n[  135.287441]  page_cache_ra_unbounded+0x124/0x170\n[  135.288510]  filemap_get_pages+0x23d/0x5a0\n[  135.289457]  ? path_openat+0xa72/0xdd0\n[  135.290332]  filemap_read+0xbf/0x300\n[  135.291158]  ? _raw_spin_lock_irqsave+0x17/0x40\n[  135.292192]  new_sync_read+0x103/0x170\n[  135.293014]  vfs_read+0x15d/0x180\n[  135.293745]  ksys_read+0xa1/0xe0\n[  135.294461]  do_syscall_64+0x3c/0x80\n[  135.295284]  entry_SYSCALL_64_after_hwframe+0x46/0xb0\n\nThis patch simply adds an extra check in __ext4_ext_check(), verifying that\neh_entries is not 0 when eh_depth is \u003e 0."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:06.975Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/bb7eb3ca4b3b0d2c7872cf1a41c30f5e5bd65df0"
        },
        {
          "url": "https://git.kernel.org/stable/c/958b0ee23f5ac106e7cc11472b71aa2ea9a033bc"
        },
        {
          "url": "https://git.kernel.org/stable/c/be4df018c0be5ebecf1ca510feacc23be415cefc"
        },
        {
          "url": "https://git.kernel.org/stable/c/2f5e9de15e4f55fbf56f22d4a2ce406246cc462d"
        },
        {
          "url": "https://git.kernel.org/stable/c/29a5b8a137ac8eb410cc823653a29ac0e7b7e1b0"
        }
      ],
      "title": "ext4: fix bug in extents parsing when eh_entries == 0 and eh_depth \u003e 0",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48631",
    "datePublished": "2024-04-28T12:59:06.569Z",
    "dateReserved": "2024-02-25T13:44:28.315Z",
    "dateUpdated": "2025-05-04T08:20:06.975Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26840 (GCVE-0-2024-26840)

Vulnerability from cvelistv5

Published

2024-04-17 10:10

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix memory leak in cachefiles_add_cache() The following memory leak was reported after unbinding /dev/cachefiles: ================================================================== unreferenced object 0xffff9b674176e3c0 (size 192): comm "cachefilesd2", pid 680, jiffies 4294881224 hex dump (first 32 bytes): 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace (crc ea38a44b): [<ffffffff8eb8a1a5>] kmem_cache_alloc+0x2d5/0x370 [<ffffffff8e917f86>] prepare_creds+0x26/0x2e0 [<ffffffffc002eeef>] cachefiles_determine_cache_security+0x1f/0x120 [<ffffffffc00243ec>] cachefiles_add_cache+0x13c/0x3a0 [<ffffffffc0025216>] cachefiles_daemon_write+0x146/0x1c0 [<ffffffff8ebc4a3b>] vfs_write+0xcb/0x520 [<ffffffff8ebc5069>] ksys_write+0x69/0xf0 [<ffffffff8f6d4662>] do_syscall_64+0x72/0x140 [<ffffffff8f8000aa>] entry_SYSCALL_64_after_hwframe+0x6e/0x76 ================================================================== Put the reference count of cache_cred in cachefiles_daemon_unbind() to fix the problem. And also put cache_cred in cachefiles_add_cache() error branch to avoid memory leaks.

References

►

URL

Tags

	https://git.kernel.org/stable/c/cb5466783793e66272624cf71925ae1d1ba32083
	https://git.kernel.org/stable/c/037d5a949b0455540ef9aab34c10ddf54b65d285
	https://git.kernel.org/stable/c/43eccc5823732ba6daab2511ed32dfc545a666d8
	https://git.kernel.org/stable/c/94965be37add0983672e48ecb33cdbda92b62579
	https://git.kernel.org/stable/c/8b218e2f0a27a9f09428b1847b4580640b9d1e58
	https://git.kernel.org/stable/c/38e921616320d159336b0ffadb09e9fb4945c7c3
	https://git.kernel.org/stable/c/9cac69912052a4def571fedf1cb9bb4ec590e25a
	https://git.kernel.org/stable/c/e21a2f17566cbd64926fb8f16323972f7a064444

Impacted products

Vendor

Product

Version

►

Linux

Version: 9ae326a69004dea8af2dae4fde58de27db700a8d
Version: 9ae326a69004dea8af2dae4fde58de27db700a8d
Version: 9ae326a69004dea8af2dae4fde58de27db700a8d
Version: 9ae326a69004dea8af2dae4fde58de27db700a8d
Version: 9ae326a69004dea8af2dae4fde58de27db700a8d
Version: 9ae326a69004dea8af2dae4fde58de27db700a8d
Version: 9ae326a69004dea8af2dae4fde58de27db700a8d
Version: 9ae326a69004dea8af2dae4fde58de27db700a8d

Linux

Version: 2.6.30

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26840",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T19:58:24.475717Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:17.204Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.702Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cb5466783793e66272624cf71925ae1d1ba32083"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/037d5a949b0455540ef9aab34c10ddf54b65d285"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/43eccc5823732ba6daab2511ed32dfc545a666d8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/94965be37add0983672e48ecb33cdbda92b62579"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8b218e2f0a27a9f09428b1847b4580640b9d1e58"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/38e921616320d159336b0ffadb09e9fb4945c7c3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9cac69912052a4def571fedf1cb9bb4ec590e25a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e21a2f17566cbd64926fb8f16323972f7a064444"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/cachefiles/cache.c",
            "fs/cachefiles/daemon.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "cb5466783793e66272624cf71925ae1d1ba32083",
              "status": "affected",
              "version": "9ae326a69004dea8af2dae4fde58de27db700a8d",
              "versionType": "git"
            },
            {
              "lessThan": "037d5a949b0455540ef9aab34c10ddf54b65d285",
              "status": "affected",
              "version": "9ae326a69004dea8af2dae4fde58de27db700a8d",
              "versionType": "git"
            },
            {
              "lessThan": "43eccc5823732ba6daab2511ed32dfc545a666d8",
              "status": "affected",
              "version": "9ae326a69004dea8af2dae4fde58de27db700a8d",
              "versionType": "git"
            },
            {
              "lessThan": "94965be37add0983672e48ecb33cdbda92b62579",
              "status": "affected",
              "version": "9ae326a69004dea8af2dae4fde58de27db700a8d",
              "versionType": "git"
            },
            {
              "lessThan": "8b218e2f0a27a9f09428b1847b4580640b9d1e58",
              "status": "affected",
              "version": "9ae326a69004dea8af2dae4fde58de27db700a8d",
              "versionType": "git"
            },
            {
              "lessThan": "38e921616320d159336b0ffadb09e9fb4945c7c3",
              "status": "affected",
              "version": "9ae326a69004dea8af2dae4fde58de27db700a8d",
              "versionType": "git"
            },
            {
              "lessThan": "9cac69912052a4def571fedf1cb9bb4ec590e25a",
              "status": "affected",
              "version": "9ae326a69004dea8af2dae4fde58de27db700a8d",
              "versionType": "git"
            },
            {
              "lessThan": "e21a2f17566cbd64926fb8f16323972f7a064444",
              "status": "affected",
              "version": "9ae326a69004dea8af2dae4fde58de27db700a8d",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/cachefiles/cache.c",
            "fs/cachefiles/daemon.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.30"
            },
            {
              "lessThan": "2.6.30",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.309",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.271",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.212",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.151",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.309",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.271",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.212",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.151",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "2.6.30",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncachefiles: fix memory leak in cachefiles_add_cache()\n\nThe following memory leak was reported after unbinding /dev/cachefiles:\n\n==================================================================\nunreferenced object 0xffff9b674176e3c0 (size 192):\n  comm \"cachefilesd2\", pid 680, jiffies 4294881224\n  hex dump (first 32 bytes):\n    01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n    00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................\n  backtrace (crc ea38a44b):\n    [\u003cffffffff8eb8a1a5\u003e] kmem_cache_alloc+0x2d5/0x370\n    [\u003cffffffff8e917f86\u003e] prepare_creds+0x26/0x2e0\n    [\u003cffffffffc002eeef\u003e] cachefiles_determine_cache_security+0x1f/0x120\n    [\u003cffffffffc00243ec\u003e] cachefiles_add_cache+0x13c/0x3a0\n    [\u003cffffffffc0025216\u003e] cachefiles_daemon_write+0x146/0x1c0\n    [\u003cffffffff8ebc4a3b\u003e] vfs_write+0xcb/0x520\n    [\u003cffffffff8ebc5069\u003e] ksys_write+0x69/0xf0\n    [\u003cffffffff8f6d4662\u003e] do_syscall_64+0x72/0x140\n    [\u003cffffffff8f8000aa\u003e] entry_SYSCALL_64_after_hwframe+0x6e/0x76\n==================================================================\n\nPut the reference count of cache_cred in cachefiles_daemon_unbind() to\nfix the problem. And also put cache_cred in cachefiles_add_cache() error\nbranch to avoid memory leaks."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:42.799Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/cb5466783793e66272624cf71925ae1d1ba32083"
        },
        {
          "url": "https://git.kernel.org/stable/c/037d5a949b0455540ef9aab34c10ddf54b65d285"
        },
        {
          "url": "https://git.kernel.org/stable/c/43eccc5823732ba6daab2511ed32dfc545a666d8"
        },
        {
          "url": "https://git.kernel.org/stable/c/94965be37add0983672e48ecb33cdbda92b62579"
        },
        {
          "url": "https://git.kernel.org/stable/c/8b218e2f0a27a9f09428b1847b4580640b9d1e58"
        },
        {
          "url": "https://git.kernel.org/stable/c/38e921616320d159336b0ffadb09e9fb4945c7c3"
        },
        {
          "url": "https://git.kernel.org/stable/c/9cac69912052a4def571fedf1cb9bb4ec590e25a"
        },
        {
          "url": "https://git.kernel.org/stable/c/e21a2f17566cbd64926fb8f16323972f7a064444"
        }
      ],
      "title": "cachefiles: fix memory leak in cachefiles_add_cache()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26840",
    "datePublished": "2024-04-17T10:10:06.180Z",
    "dateReserved": "2024-02-19T14:20:24.182Z",
    "dateUpdated": "2025-05-04T08:57:42.799Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26843 (GCVE-0-2024-26843)

Vulnerability from cvelistv5

Published

2024-04-17 10:10

Modified

2025-05-21 09:12

Severity ?

6.0 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: efi: runtime: Fix potential overflow of soft-reserved region size md_size will have been narrowed if we have >= 4GB worth of pages in a soft-reserved region.

References

►

URL

Tags

	https://git.kernel.org/stable/c/4fff3d735baea104017f2e3c245e27cdc79f2426
	https://git.kernel.org/stable/c/4aa36b62c3eaa869860bf78b1146e9f2b5f782a9
	https://git.kernel.org/stable/c/700c3f642c32721f246e09d3a9511acf40ae42be
	https://git.kernel.org/stable/c/cf3d6813601fe496de7f023435e31bfffa74ae70
	https://git.kernel.org/stable/c/156cb12ffdcf33883304f0db645e1eadae712fe0
	https://git.kernel.org/stable/c/de1034b38a346ef6be25fe8792f5d1e0684d5ff4

Impacted products

Vendor

Product

Version

►

Linux

Version: 16993c0f0a43213e23666ea40e9163887f593ac7
Version: 16993c0f0a43213e23666ea40e9163887f593ac7
Version: 16993c0f0a43213e23666ea40e9163887f593ac7
Version: 16993c0f0a43213e23666ea40e9163887f593ac7
Version: 16993c0f0a43213e23666ea40e9163887f593ac7
Version: 16993c0f0a43213e23666ea40e9163887f593ac7

Linux

Version: 5.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 6,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "HIGH",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26843",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T17:35:21.799610Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "description": "CWE-noinfo Not enough information",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-06T19:39:21.403Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.673Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4fff3d735baea104017f2e3c245e27cdc79f2426"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4aa36b62c3eaa869860bf78b1146e9f2b5f782a9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/700c3f642c32721f246e09d3a9511acf40ae42be"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cf3d6813601fe496de7f023435e31bfffa74ae70"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/156cb12ffdcf33883304f0db645e1eadae712fe0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/de1034b38a346ef6be25fe8792f5d1e0684d5ff4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/firmware/efi/arm-runtime.c",
            "drivers/firmware/efi/riscv-runtime.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "4fff3d735baea104017f2e3c245e27cdc79f2426",
              "status": "affected",
              "version": "16993c0f0a43213e23666ea40e9163887f593ac7",
              "versionType": "git"
            },
            {
              "lessThan": "4aa36b62c3eaa869860bf78b1146e9f2b5f782a9",
              "status": "affected",
              "version": "16993c0f0a43213e23666ea40e9163887f593ac7",
              "versionType": "git"
            },
            {
              "lessThan": "700c3f642c32721f246e09d3a9511acf40ae42be",
              "status": "affected",
              "version": "16993c0f0a43213e23666ea40e9163887f593ac7",
              "versionType": "git"
            },
            {
              "lessThan": "cf3d6813601fe496de7f023435e31bfffa74ae70",
              "status": "affected",
              "version": "16993c0f0a43213e23666ea40e9163887f593ac7",
              "versionType": "git"
            },
            {
              "lessThan": "156cb12ffdcf33883304f0db645e1eadae712fe0",
              "status": "affected",
              "version": "16993c0f0a43213e23666ea40e9163887f593ac7",
              "versionType": "git"
            },
            {
              "lessThan": "de1034b38a346ef6be25fe8792f5d1e0684d5ff4",
              "status": "affected",
              "version": "16993c0f0a43213e23666ea40e9163887f593ac7",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/firmware/efi/arm-runtime.c",
            "drivers/firmware/efi/riscv-runtime.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.5"
            },
            {
              "lessThan": "5.5",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.211",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.211",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.5",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nefi: runtime: Fix potential overflow of soft-reserved region size\n\nmd_size will have been narrowed if we have \u003e= 4GB worth of pages in a\nsoft-reserved region."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-21T09:12:32.297Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/4fff3d735baea104017f2e3c245e27cdc79f2426"
        },
        {
          "url": "https://git.kernel.org/stable/c/4aa36b62c3eaa869860bf78b1146e9f2b5f782a9"
        },
        {
          "url": "https://git.kernel.org/stable/c/700c3f642c32721f246e09d3a9511acf40ae42be"
        },
        {
          "url": "https://git.kernel.org/stable/c/cf3d6813601fe496de7f023435e31bfffa74ae70"
        },
        {
          "url": "https://git.kernel.org/stable/c/156cb12ffdcf33883304f0db645e1eadae712fe0"
        },
        {
          "url": "https://git.kernel.org/stable/c/de1034b38a346ef6be25fe8792f5d1e0684d5ff4"
        }
      ],
      "title": "efi: runtime: Fix potential overflow of soft-reserved region size",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26843",
    "datePublished": "2024-04-17T10:10:08.089Z",
    "dateReserved": "2024-02-19T14:20:24.182Z",
    "dateUpdated": "2025-05-21T09:12:32.297Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26893 (GCVE-0-2024-26893)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:59

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix double free in SMC transport cleanup path When the generic SCMI code tears down a channel, it calls the chan_free callback function, defined by each transport. Since multiple protocols might share the same transport_info member, chan_free() might want to clean up the same member multiple times within the given SCMI transport implementation. In this case, it is SMC transport. This will lead to a NULL pointer dereference at the second time: | scmi_protocol scmi_dev.1: Enabled polling mode TX channel - prot_id:16 | arm-scmi firmware:scmi: SCMI Notifications - Core Enabled. | arm-scmi firmware:scmi: unable to communicate with SCMI | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 | Mem abort info: | ESR = 0x0000000096000004 | EC = 0x25: DABT (current EL), IL = 32 bits | SET = 0, FnV = 0 | EA = 0, S1PTW = 0 | FSC = 0x04: level 0 translation fault | Data abort info: | ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000 | CM = 0, WnR = 0, TnD = 0, TagAccess = 0 | GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 | user pgtable: 4k pages, 48-bit VAs, pgdp=0000000881ef8000 | [0000000000000000] pgd=0000000000000000, p4d=0000000000000000 | Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP | Modules linked in: | CPU: 4 PID: 1 Comm: swapper/0 Not tainted 6.7.0-rc2-00124-g455ef3d016c9-dirty #793 | Hardware name: FVP Base RevC (DT) | pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) | pc : smc_chan_free+0x3c/0x6c | lr : smc_chan_free+0x3c/0x6c | Call trace: | smc_chan_free+0x3c/0x6c | idr_for_each+0x68/0xf8 | scmi_cleanup_channels.isra.0+0x2c/0x58 | scmi_probe+0x434/0x734 | platform_probe+0x68/0xd8 | really_probe+0x110/0x27c | __driver_probe_device+0x78/0x12c | driver_probe_device+0x3c/0x118 | __driver_attach+0x74/0x128 | bus_for_each_dev+0x78/0xe0 | driver_attach+0x24/0x30 | bus_add_driver+0xe4/0x1e8 | driver_register+0x60/0x128 | __platform_driver_register+0x28/0x34 | scmi_driver_init+0x84/0xc0 | do_one_initcall+0x78/0x33c | kernel_init_freeable+0x2b8/0x51c | kernel_init+0x24/0x130 | ret_from_fork+0x10/0x20 | Code: f0004701 910a0021 aa1403e5 97b91c70 (b9400280) | ---[ end trace 0000000000000000 ]--- Simply check for the struct pointer being NULL before trying to access its members, to avoid this situation. This was found when a transport doesn't really work (for instance no SMC service), the probe routines then tries to clean up, and triggers a crash.

References

►

URL

Tags

	https://git.kernel.org/stable/c/0d276d9f335f41d6524258d58c0c0241ef9a83a4
	https://git.kernel.org/stable/c/857f56db8c3a71f9871922b6984ff74ad588cb2c
	https://git.kernel.org/stable/c/8ffaa17ccb1eb1b65cf85db63225a3581c303773
	https://git.kernel.org/stable/c/ead445dd3d681020af333649a27306160eee761d
	https://git.kernel.org/stable/c/f1d71576d2c9ec8fdb822173fa7f3de79475e9bd

Impacted products

Vendor

Product

Version

►

Linux

Version: 1dc6558062dadfabd2fb3bd885fa6e92ec7196f2
Version: 1dc6558062dadfabd2fb3bd885fa6e92ec7196f2
Version: 1dc6558062dadfabd2fb3bd885fa6e92ec7196f2
Version: 1dc6558062dadfabd2fb3bd885fa6e92ec7196f2
Version: 1dc6558062dadfabd2fb3bd885fa6e92ec7196f2

Linux

Version: 5.8

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26893",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-16T15:26:07.636666Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-16T15:26:17.892Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.507Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0d276d9f335f41d6524258d58c0c0241ef9a83a4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/857f56db8c3a71f9871922b6984ff74ad588cb2c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8ffaa17ccb1eb1b65cf85db63225a3581c303773"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ead445dd3d681020af333649a27306160eee761d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f1d71576d2c9ec8fdb822173fa7f3de79475e9bd"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/firmware/arm_scmi/smc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "0d276d9f335f41d6524258d58c0c0241ef9a83a4",
              "status": "affected",
              "version": "1dc6558062dadfabd2fb3bd885fa6e92ec7196f2",
              "versionType": "git"
            },
            {
              "lessThan": "857f56db8c3a71f9871922b6984ff74ad588cb2c",
              "status": "affected",
              "version": "1dc6558062dadfabd2fb3bd885fa6e92ec7196f2",
              "versionType": "git"
            },
            {
              "lessThan": "8ffaa17ccb1eb1b65cf85db63225a3581c303773",
              "status": "affected",
              "version": "1dc6558062dadfabd2fb3bd885fa6e92ec7196f2",
              "versionType": "git"
            },
            {
              "lessThan": "ead445dd3d681020af333649a27306160eee761d",
              "status": "affected",
              "version": "1dc6558062dadfabd2fb3bd885fa6e92ec7196f2",
              "versionType": "git"
            },
            {
              "lessThan": "f1d71576d2c9ec8fdb822173fa7f3de79475e9bd",
              "status": "affected",
              "version": "1dc6558062dadfabd2fb3bd885fa6e92ec7196f2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/firmware/arm_scmi/smc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.8"
            },
            {
              "lessThan": "5.8",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "5.8",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nfirmware: arm_scmi: Fix double free in SMC transport cleanup path\n\nWhen the generic SCMI code tears down a channel, it calls the chan_free\ncallback function, defined by each transport. Since multiple protocols\nmight share the same transport_info member, chan_free() might want to\nclean up the same member multiple times within the given SCMI transport\nimplementation. In this case, it is SMC transport. This will lead to a NULL\npointer dereference at the second time:\n\n    | scmi_protocol scmi_dev.1: Enabled polling mode TX channel - prot_id:16\n    | arm-scmi firmware:scmi: SCMI Notifications - Core Enabled.\n    | arm-scmi firmware:scmi: unable to communicate with SCMI\n    | Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000\n    | Mem abort info:\n    |   ESR = 0x0000000096000004\n    |   EC = 0x25: DABT (current EL), IL = 32 bits\n    |   SET = 0, FnV = 0\n    |   EA = 0, S1PTW = 0\n    |   FSC = 0x04: level 0 translation fault\n    | Data abort info:\n    |   ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000\n    |   CM = 0, WnR = 0, TnD = 0, TagAccess = 0\n    |   GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0\n    | user pgtable: 4k pages, 48-bit VAs, pgdp=0000000881ef8000\n    | [0000000000000000] pgd=0000000000000000, p4d=0000000000000000\n    | Internal error: Oops: 0000000096000004 [#1] PREEMPT SMP\n    | Modules linked in:\n    | CPU: 4 PID: 1 Comm: swapper/0 Not tainted 6.7.0-rc2-00124-g455ef3d016c9-dirty #793\n    | Hardware name: FVP Base RevC (DT)\n    | pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--)\n    | pc : smc_chan_free+0x3c/0x6c\n    | lr : smc_chan_free+0x3c/0x6c\n    | Call trace:\n    |  smc_chan_free+0x3c/0x6c\n    |  idr_for_each+0x68/0xf8\n    |  scmi_cleanup_channels.isra.0+0x2c/0x58\n    |  scmi_probe+0x434/0x734\n    |  platform_probe+0x68/0xd8\n    |  really_probe+0x110/0x27c\n    |  __driver_probe_device+0x78/0x12c\n    |  driver_probe_device+0x3c/0x118\n    |  __driver_attach+0x74/0x128\n    |  bus_for_each_dev+0x78/0xe0\n    |  driver_attach+0x24/0x30\n    |  bus_add_driver+0xe4/0x1e8\n    |  driver_register+0x60/0x128\n    |  __platform_driver_register+0x28/0x34\n    |  scmi_driver_init+0x84/0xc0\n    |  do_one_initcall+0x78/0x33c\n    |  kernel_init_freeable+0x2b8/0x51c\n    |  kernel_init+0x24/0x130\n    |  ret_from_fork+0x10/0x20\n    | Code: f0004701 910a0021 aa1403e5 97b91c70 (b9400280)\n    | ---[ end trace 0000000000000000 ]---\n\nSimply check for the struct pointer being NULL before trying to access\nits members, to avoid this situation.\n\nThis was found when a transport doesn\u0027t really work (for instance no SMC\nservice), the probe routines then tries to clean up, and triggers a crash."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:59:03.225Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/0d276d9f335f41d6524258d58c0c0241ef9a83a4"
        },
        {
          "url": "https://git.kernel.org/stable/c/857f56db8c3a71f9871922b6984ff74ad588cb2c"
        },
        {
          "url": "https://git.kernel.org/stable/c/8ffaa17ccb1eb1b65cf85db63225a3581c303773"
        },
        {
          "url": "https://git.kernel.org/stable/c/ead445dd3d681020af333649a27306160eee761d"
        },
        {
          "url": "https://git.kernel.org/stable/c/f1d71576d2c9ec8fdb822173fa7f3de79475e9bd"
        }
      ],
      "title": "firmware: arm_scmi: Fix double free in SMC transport cleanup path",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26893",
    "datePublished": "2024-04-17T10:27:45.332Z",
    "dateReserved": "2024-02-19T14:20:24.186Z",
    "dateUpdated": "2025-05-04T08:59:03.225Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26898 (GCVE-0-2024-26898)

Vulnerability from cvelistv5

Published

2024-04-17 10:27

Modified

2025-05-04 08:59

Severity ?

7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts This patch is against CVE-2023-6270. The description of cve is: A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` global queue. This could lead to a denial of service condition or potential code execution. In aoecmd_cfg_pkts(), it always calls dev_put(ifp) when skb initial code is finished. But the net_device ifp will still be used in later tx()->dev_queue_xmit() in kthread. Which means that the dev_put(ifp) should NOT be called in the success path of skb initial code in aoecmd_cfg_pkts(). Otherwise tx() may run into use-after-free because the net_device is freed. This patch removed the dev_put(ifp) in the success path in aoecmd_cfg_pkts(), and added dev_put() after skb xmit in tx().

References

►

URL

Tags

	https://git.kernel.org/stable/c/ad80c34944d7175fa1f5c7a55066020002921a99
	https://git.kernel.org/stable/c/1a54aa506b3b2f31496731039e49778f54eee881
	https://git.kernel.org/stable/c/faf0b4c5e00bb680e8e43ac936df24d3f48c8e65
	https://git.kernel.org/stable/c/7dd09fa80b0765ce68bfae92f4e2f395ccf0fba4
	https://git.kernel.org/stable/c/74ca3ef68d2f449bc848c0a814cefc487bf755fa
	https://git.kernel.org/stable/c/eb48680b0255a9e8a9bdc93d6a55b11c31262e62
	https://git.kernel.org/stable/c/079cba4f4e307c69878226fdf5228c20aa1c969c
	https://git.kernel.org/stable/c/a16fbb80064634b254520a46395e36b87ca4731e
	https://git.kernel.org/stable/c/f98364e926626c678fb4b9004b75cacf92ff0662

Impacted products

Vendor

Product

Version

►

Linux

Version: 7562f876cd93800f2f8c89445f2a563590b24e09
Version: 7562f876cd93800f2f8c89445f2a563590b24e09
Version: 7562f876cd93800f2f8c89445f2a563590b24e09
Version: 7562f876cd93800f2f8c89445f2a563590b24e09
Version: 7562f876cd93800f2f8c89445f2a563590b24e09
Version: 7562f876cd93800f2f8c89445f2a563590b24e09
Version: 7562f876cd93800f2f8c89445f2a563590b24e09
Version: 7562f876cd93800f2f8c89445f2a563590b24e09
Version: 7562f876cd93800f2f8c89445f2a563590b24e09

Linux

Version: 2.6.22

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:2.6.22:-:*:*:*:*:*:*"
            ],
            "defaultStatus": "affected",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "2.6.22"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "ad80c34944d7",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              },
              {
                "lessThan": "1a54aa506b3b",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              },
              {
                "lessThan": "faf0b4c5e00b",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              },
              {
                "lessThan": "7dd09fa80b07",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              },
              {
                "lessThan": "74ca3ef68d2f",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              },
              {
                "lessThan": "eb48680b0255",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              },
              {
                "lessThan": "079cba4f4e30",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              },
              {
                "lessThan": "a16fbb800646",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              },
              {
                "lessThan": "f98364e92662",
                "status": "affected",
                "version": "7562f876cd93",
                "versionType": "git"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "HIGH",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 7,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "HIGH",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26898",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-12T16:22:28.091007Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-416",
                "description": "CWE-416 Use After Free",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-22T14:55:25.413Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.475Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ad80c34944d7175fa1f5c7a55066020002921a99"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1a54aa506b3b2f31496731039e49778f54eee881"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/faf0b4c5e00bb680e8e43ac936df24d3f48c8e65"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7dd09fa80b0765ce68bfae92f4e2f395ccf0fba4"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/74ca3ef68d2f449bc848c0a814cefc487bf755fa"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/eb48680b0255a9e8a9bdc93d6a55b11c31262e62"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/079cba4f4e307c69878226fdf5228c20aa1c969c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a16fbb80064634b254520a46395e36b87ca4731e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f98364e926626c678fb4b9004b75cacf92ff0662"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/block/aoe/aoecmd.c",
            "drivers/block/aoe/aoenet.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "ad80c34944d7175fa1f5c7a55066020002921a99",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            },
            {
              "lessThan": "1a54aa506b3b2f31496731039e49778f54eee881",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            },
            {
              "lessThan": "faf0b4c5e00bb680e8e43ac936df24d3f48c8e65",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            },
            {
              "lessThan": "7dd09fa80b0765ce68bfae92f4e2f395ccf0fba4",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            },
            {
              "lessThan": "74ca3ef68d2f449bc848c0a814cefc487bf755fa",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            },
            {
              "lessThan": "eb48680b0255a9e8a9bdc93d6a55b11c31262e62",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            },
            {
              "lessThan": "079cba4f4e307c69878226fdf5228c20aa1c969c",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            },
            {
              "lessThan": "a16fbb80064634b254520a46395e36b87ca4731e",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            },
            {
              "lessThan": "f98364e926626c678fb4b9004b75cacf92ff0662",
              "status": "affected",
              "version": "7562f876cd93800f2f8c89445f2a563590b24e09",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/block/aoe/aoecmd.c",
            "drivers/block/aoe/aoenet.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.22"
            },
            {
              "lessThan": "2.6.22",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.311",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.273",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.214",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.153",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.83",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.23",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.11",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.311",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.273",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.214",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.153",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.83",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.23",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.11",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.2",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "2.6.22",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\naoe: fix the potential use-after-free problem in aoecmd_cfg_pkts\n\nThis patch is against CVE-2023-6270. The description of cve is:\n\n  A flaw was found in the ATA over Ethernet (AoE) driver in the Linux\n  kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on\n  `struct net_device`, and a use-after-free can be triggered by racing\n  between the free on the struct and the access through the `skbtxq`\n  global queue. This could lead to a denial of service condition or\n  potential code execution.\n\nIn aoecmd_cfg_pkts(), it always calls dev_put(ifp) when skb initial\ncode is finished. But the net_device ifp will still be used in\nlater tx()-\u003edev_queue_xmit() in kthread. Which means that the\ndev_put(ifp) should NOT be called in the success path of skb\ninitial code in aoecmd_cfg_pkts(). Otherwise tx() may run into\nuse-after-free because the net_device is freed.\n\nThis patch removed the dev_put(ifp) in the success path in\naoecmd_cfg_pkts(), and added dev_put() after skb xmit in tx()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:59:10.977Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/ad80c34944d7175fa1f5c7a55066020002921a99"
        },
        {
          "url": "https://git.kernel.org/stable/c/1a54aa506b3b2f31496731039e49778f54eee881"
        },
        {
          "url": "https://git.kernel.org/stable/c/faf0b4c5e00bb680e8e43ac936df24d3f48c8e65"
        },
        {
          "url": "https://git.kernel.org/stable/c/7dd09fa80b0765ce68bfae92f4e2f395ccf0fba4"
        },
        {
          "url": "https://git.kernel.org/stable/c/74ca3ef68d2f449bc848c0a814cefc487bf755fa"
        },
        {
          "url": "https://git.kernel.org/stable/c/eb48680b0255a9e8a9bdc93d6a55b11c31262e62"
        },
        {
          "url": "https://git.kernel.org/stable/c/079cba4f4e307c69878226fdf5228c20aa1c969c"
        },
        {
          "url": "https://git.kernel.org/stable/c/a16fbb80064634b254520a46395e36b87ca4731e"
        },
        {
          "url": "https://git.kernel.org/stable/c/f98364e926626c678fb4b9004b75cacf92ff0662"
        }
      ],
      "title": "aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26898",
    "datePublished": "2024-04-17T10:27:48.466Z",
    "dateReserved": "2024-02-19T14:20:24.186Z",
    "dateUpdated": "2025-05-04T08:59:10.977Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47198 (GCVE-0-2021-47198)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine An error is detected with the following report when unloading the driver: "KASAN: use-after-free in lpfc_unreg_rpi+0x1b1b" The NLP_REG_LOGIN_SEND nlp_flag is set in lpfc_reg_fab_ctrl_node(), but the flag is not cleared upon completion of the login. This allows a second call to lpfc_unreg_rpi() to proceed with nlp_rpi set to LPFC_RPI_ALLOW_ERROR. This results in a use after free access when used as an rpi_ids array index. Fix by clearing the NLP_REG_LOGIN_SEND nlp_flag in lpfc_mbx_cmpl_fc_reg_login().

References

►

URL

Tags

	https://git.kernel.org/stable/c/dbebf865b3239595c1d4dba063b122862583b52a
	https://git.kernel.org/stable/c/79b20beccea3a3938a8500acef4e6b9d7c66142f

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.373Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/dbebf865b3239595c1d4dba063b122862583b52a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/79b20beccea3a3938a8500acef4e6b9d7c66142f"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47198",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:50:04.933351Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:38.254Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/lpfc/lpfc_hbadisc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "dbebf865b3239595c1d4dba063b122862583b52a",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "79b20beccea3a3938a8500acef4e6b9d7c66142f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/lpfc/lpfc_hbadisc.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine\n\nAn error is detected with the following report when unloading the driver:\n  \"KASAN: use-after-free in lpfc_unreg_rpi+0x1b1b\"\n\nThe NLP_REG_LOGIN_SEND nlp_flag is set in lpfc_reg_fab_ctrl_node(), but the\nflag is not cleared upon completion of the login.\n\nThis allows a second call to lpfc_unreg_rpi() to proceed with nlp_rpi set\nto LPFC_RPI_ALLOW_ERROR.  This results in a use after free access when used\nas an rpi_ids array index.\n\nFix by clearing the NLP_REG_LOGIN_SEND nlp_flag in\nlpfc_mbx_cmpl_fc_reg_login()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:13.149Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/dbebf865b3239595c1d4dba063b122862583b52a"
        },
        {
          "url": "https://git.kernel.org/stable/c/79b20beccea3a3938a8500acef4e6b9d7c66142f"
        }
      ],
      "title": "scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47198",
    "datePublished": "2024-04-10T18:56:33.898Z",
    "dateReserved": "2024-03-25T09:12:14.116Z",
    "dateUpdated": "2025-05-04T07:06:13.149Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26933 (GCVE-0-2024-26933)

Vulnerability from cvelistv5

Published

2024-05-01 05:17

Modified

2025-05-04 09:00

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix deadlock in port "disable" sysfs attribute The show and store callback routines for the "disable" sysfs attribute file in port.c acquire the device lock for the port's parent hub device. This can cause problems if another process has locked the hub to remove it or change its configuration: Removing the hub or changing its configuration requires the hub interface to be removed, which requires the port device to be removed, and device_del() waits until all outstanding sysfs attribute callbacks for the ports have returned. The lock can't be released until then. But the disable_show() or disable_store() routine can't return until after it has acquired the lock. The resulting deadlock can be avoided by calling sysfs_break_active_protection(). This will cause the sysfs core not to wait for the attribute's callback routine to return, allowing the removal to proceed. The disadvantage is that after making this call, there is no guarantee that the hub structure won't be deallocated at any moment. To prevent this, we have to acquire a reference to it first by calling hub_get().

References

►

URL

Tags

	https://git.kernel.org/stable/c/9dac54f08198147f5ec0ec52fcf1bc8ac899ac05
	https://git.kernel.org/stable/c/f51849833705dea5b4f9b0c8de714dd87bd6c95c
	https://git.kernel.org/stable/c/4facc9421117ba9d8148c73771b213887fec77f7
	https://git.kernel.org/stable/c/73d1589b91f2099e5f6534a8497b7c6b527e064e
	https://git.kernel.org/stable/c/f4d1960764d8a70318b02f15203a1be2b2554ca1

Impacted products

Vendor

Product

Version

►

Linux

Version: f061f43d7418cb62b8d073e221ec75d3f5b89e17
Version: f061f43d7418cb62b8d073e221ec75d3f5b89e17
Version: f061f43d7418cb62b8d073e221ec75d3f5b89e17
Version: f061f43d7418cb62b8d073e221ec75d3f5b89e17
Version: f061f43d7418cb62b8d073e221ec75d3f5b89e17

Linux

Version: 6.0

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.581Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9dac54f08198147f5ec0ec52fcf1bc8ac899ac05"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f51849833705dea5b4f9b0c8de714dd87bd6c95c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4facc9421117ba9d8148c73771b213887fec77f7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/73d1589b91f2099e5f6534a8497b7c6b527e064e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f4d1960764d8a70318b02f15203a1be2b2554ca1"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26933",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:45:52.195176Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:52.820Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/core/port.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "9dac54f08198147f5ec0ec52fcf1bc8ac899ac05",
              "status": "affected",
              "version": "f061f43d7418cb62b8d073e221ec75d3f5b89e17",
              "versionType": "git"
            },
            {
              "lessThan": "f51849833705dea5b4f9b0c8de714dd87bd6c95c",
              "status": "affected",
              "version": "f061f43d7418cb62b8d073e221ec75d3f5b89e17",
              "versionType": "git"
            },
            {
              "lessThan": "4facc9421117ba9d8148c73771b213887fec77f7",
              "status": "affected",
              "version": "f061f43d7418cb62b8d073e221ec75d3f5b89e17",
              "versionType": "git"
            },
            {
              "lessThan": "73d1589b91f2099e5f6534a8497b7c6b527e064e",
              "status": "affected",
              "version": "f061f43d7418cb62b8d073e221ec75d3f5b89e17",
              "versionType": "git"
            },
            {
              "lessThan": "f4d1960764d8a70318b02f15203a1be2b2554ca1",
              "status": "affected",
              "version": "f061f43d7418cb62b8d073e221ec75d3f5b89e17",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/usb/core/port.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.0"
            },
            {
              "lessThan": "6.0",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "6.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "6.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "6.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "6.0",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "6.0",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: core: Fix deadlock in port \"disable\" sysfs attribute\n\nThe show and store callback routines for the \"disable\" sysfs attribute\nfile in port.c acquire the device lock for the port\u0027s parent hub\ndevice.  This can cause problems if another process has locked the hub\nto remove it or change its configuration:\n\n\tRemoving the hub or changing its configuration requires the\n\thub interface to be removed, which requires the port device\n\tto be removed, and device_del() waits until all outstanding\n\tsysfs attribute callbacks for the ports have returned.  The\n\tlock can\u0027t be released until then.\n\n\tBut the disable_show() or disable_store() routine can\u0027t return\n\tuntil after it has acquired the lock.\n\nThe resulting deadlock can be avoided by calling\nsysfs_break_active_protection().  This will cause the sysfs core not\nto wait for the attribute\u0027s callback routine to return, allowing the\nremoval to proceed.  The disadvantage is that after making this call,\nthere is no guarantee that the hub structure won\u0027t be deallocated at\nany moment.  To prevent this, we have to acquire a reference to it\nfirst by calling hub_get()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:00:05.158Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/9dac54f08198147f5ec0ec52fcf1bc8ac899ac05"
        },
        {
          "url": "https://git.kernel.org/stable/c/f51849833705dea5b4f9b0c8de714dd87bd6c95c"
        },
        {
          "url": "https://git.kernel.org/stable/c/4facc9421117ba9d8148c73771b213887fec77f7"
        },
        {
          "url": "https://git.kernel.org/stable/c/73d1589b91f2099e5f6534a8497b7c6b527e064e"
        },
        {
          "url": "https://git.kernel.org/stable/c/f4d1960764d8a70318b02f15203a1be2b2554ca1"
        }
      ],
      "title": "USB: core: Fix deadlock in port \"disable\" sysfs attribute",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26933",
    "datePublished": "2024-05-01T05:17:23.289Z",
    "dateReserved": "2024-02-19T14:20:24.195Z",
    "dateUpdated": "2025-05-04T09:00:05.158Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47219 (GCVE-0-2021-47219)

Vulnerability from cvelistv5

Published

2024-04-10 19:01

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs() The following issue was observed running syzkaller: BUG: KASAN: slab-out-of-bounds in memcpy include/linux/string.h:377 [inline] BUG: KASAN: slab-out-of-bounds in sg_copy_buffer+0x150/0x1c0 lib/scatterlist.c:831 Read of size 2132 at addr ffff8880aea95dc8 by task syz-executor.0/9815 CPU: 0 PID: 9815 Comm: syz-executor.0 Not tainted 4.19.202-00874-gfc0fe04215a9 #2 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1ubuntu1 04/01/2014 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0xe4/0x14a lib/dump_stack.c:118 print_address_description+0x73/0x280 mm/kasan/report.c:253 kasan_report_error mm/kasan/report.c:352 [inline] kasan_report+0x272/0x370 mm/kasan/report.c:410 memcpy+0x1f/0x50 mm/kasan/kasan.c:302 memcpy include/linux/string.h:377 [inline] sg_copy_buffer+0x150/0x1c0 lib/scatterlist.c:831 fill_from_dev_buffer+0x14f/0x340 drivers/scsi/scsi_debug.c:1021 resp_report_tgtpgs+0x5aa/0x770 drivers/scsi/scsi_debug.c:1772 schedule_resp+0x464/0x12f0 drivers/scsi/scsi_debug.c:4429 scsi_debug_queuecommand+0x467/0x1390 drivers/scsi/scsi_debug.c:5835 scsi_dispatch_cmd+0x3fc/0x9b0 drivers/scsi/scsi_lib.c:1896 scsi_request_fn+0x1042/0x1810 drivers/scsi/scsi_lib.c:2034 __blk_run_queue_uncond block/blk-core.c:464 [inline] __blk_run_queue+0x1a4/0x380 block/blk-core.c:484 blk_execute_rq_nowait+0x1c2/0x2d0 block/blk-exec.c:78 sg_common_write.isra.19+0xd74/0x1dc0 drivers/scsi/sg.c:847 sg_write.part.23+0x6e0/0xd00 drivers/scsi/sg.c:716 sg_write+0x64/0xa0 drivers/scsi/sg.c:622 __vfs_write+0xed/0x690 fs/read_write.c:485 kill_bdev:block_device:00000000e138492c vfs_write+0x184/0x4c0 fs/read_write.c:549 ksys_write+0x107/0x240 fs/read_write.c:599 do_syscall_64+0xc2/0x560 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe We get 'alen' from command its type is int. If userspace passes a large length we will get a negative 'alen'. Switch n, alen, and rlen to u32.

References

►

URL

Tags

	https://git.kernel.org/stable/c/8440377e1a5644779b4c8d013aa2a917f5fc83c3
	https://git.kernel.org/stable/c/66523553fa62c7878fc5441dc4e82be71934eb77
	https://git.kernel.org/stable/c/f347c26836c270199de1599c3cd466bb7747caa9

Impacted products

Vendor

Product

Version

►

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47219",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-10T19:49:13.779675Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:14:05.479Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.367Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8440377e1a5644779b4c8d013aa2a917f5fc83c3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/66523553fa62c7878fc5441dc4e82be71934eb77"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f347c26836c270199de1599c3cd466bb7747caa9"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/scsi_debug.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "8440377e1a5644779b4c8d013aa2a917f5fc83c3",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "66523553fa62c7878fc5441dc4e82be71934eb77",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "f347c26836c270199de1599c3cd466bb7747caa9",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/scsi/scsi_debug.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs()\n\nThe following issue was observed running syzkaller:\n\nBUG: KASAN: slab-out-of-bounds in memcpy include/linux/string.h:377 [inline]\nBUG: KASAN: slab-out-of-bounds in sg_copy_buffer+0x150/0x1c0 lib/scatterlist.c:831\nRead of size 2132 at addr ffff8880aea95dc8 by task syz-executor.0/9815\n\nCPU: 0 PID: 9815 Comm: syz-executor.0 Not tainted 4.19.202-00874-gfc0fe04215a9 #2\nHardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.10.2-1ubuntu1 04/01/2014\nCall Trace:\n __dump_stack lib/dump_stack.c:77 [inline]\n dump_stack+0xe4/0x14a lib/dump_stack.c:118\n print_address_description+0x73/0x280 mm/kasan/report.c:253\n kasan_report_error mm/kasan/report.c:352 [inline]\n kasan_report+0x272/0x370 mm/kasan/report.c:410\n memcpy+0x1f/0x50 mm/kasan/kasan.c:302\n memcpy include/linux/string.h:377 [inline]\n sg_copy_buffer+0x150/0x1c0 lib/scatterlist.c:831\n fill_from_dev_buffer+0x14f/0x340 drivers/scsi/scsi_debug.c:1021\n resp_report_tgtpgs+0x5aa/0x770 drivers/scsi/scsi_debug.c:1772\n schedule_resp+0x464/0x12f0 drivers/scsi/scsi_debug.c:4429\n scsi_debug_queuecommand+0x467/0x1390 drivers/scsi/scsi_debug.c:5835\n scsi_dispatch_cmd+0x3fc/0x9b0 drivers/scsi/scsi_lib.c:1896\n scsi_request_fn+0x1042/0x1810 drivers/scsi/scsi_lib.c:2034\n __blk_run_queue_uncond block/blk-core.c:464 [inline]\n __blk_run_queue+0x1a4/0x380 block/blk-core.c:484\n blk_execute_rq_nowait+0x1c2/0x2d0 block/blk-exec.c:78\n sg_common_write.isra.19+0xd74/0x1dc0 drivers/scsi/sg.c:847\n sg_write.part.23+0x6e0/0xd00 drivers/scsi/sg.c:716\n sg_write+0x64/0xa0 drivers/scsi/sg.c:622\n __vfs_write+0xed/0x690 fs/read_write.c:485\nkill_bdev:block_device:00000000e138492c\n vfs_write+0x184/0x4c0 fs/read_write.c:549\n ksys_write+0x107/0x240 fs/read_write.c:599\n do_syscall_64+0xc2/0x560 arch/x86/entry/common.c:293\n entry_SYSCALL_64_after_hwframe+0x49/0xbe\n\nWe get \u0027alen\u0027 from command its type is int. If userspace passes a large\nlength we will get a negative \u0027alen\u0027.\n\nSwitch n, alen, and rlen to u32."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:35.143Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/8440377e1a5644779b4c8d013aa2a917f5fc83c3"
        },
        {
          "url": "https://git.kernel.org/stable/c/66523553fa62c7878fc5441dc4e82be71934eb77"
        },
        {
          "url": "https://git.kernel.org/stable/c/f347c26836c270199de1599c3cd466bb7747caa9"
        }
      ],
      "title": "scsi: scsi_debug: Fix out-of-bound read in resp_report_tgtpgs()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47219",
    "datePublished": "2024-04-10T19:01:57.694Z",
    "dateReserved": "2024-04-10T18:59:19.528Z",
    "dateUpdated": "2025-05-04T07:06:35.143Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48644 (GCVE-0-2022-48644)

Vulnerability from cvelistv5

Published

2024-04-28 13:00

Modified

2025-05-04 08:20

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: avoid disabling offload when it was never enabled In an incredibly strange API design decision, qdisc->destroy() gets called even if qdisc->init() never succeeded, not exclusively since commit 87b60cfacf9f ("net_sched: fix error recovery at qdisc creation"), but apparently also earlier (in the case of qdisc_create_dflt()). The taprio qdisc does not fully acknowledge this when it attempts full offload, because it starts off with q->flags = TAPRIO_FLAGS_INVALID in taprio_init(), then it replaces q->flags with TCA_TAPRIO_ATTR_FLAGS parsed from netlink (in taprio_change(), tail called from taprio_init()). But in taprio_destroy(), we call taprio_disable_offload(), and this determines what to do based on FULL_OFFLOAD_IS_ENABLED(q->flags). But looking at the implementation of FULL_OFFLOAD_IS_ENABLED() (a bitwise check of bit 1 in q->flags), it is invalid to call this macro on q->flags when it contains TAPRIO_FLAGS_INVALID, because that is set to U32_MAX, and therefore FULL_OFFLOAD_IS_ENABLED() will return true on an invalid set of flags. As a result, it is possible to crash the kernel if user space forces an error between setting q->flags = TAPRIO_FLAGS_INVALID, and the calling of taprio_enable_offload(). This is because drivers do not expect the offload to be disabled when it was never enabled. The error that we force here is to attach taprio as a non-root qdisc, but instead as child of an mqprio root qdisc: $ tc qdisc add dev swp0 root handle 1: \ mqprio num_tc 8 map 0 1 2 3 4 5 6 7 \ queues 1@0 1@1 1@2 1@3 1@4 1@5 1@6 1@7 hw 0 $ tc qdisc replace dev swp0 parent 1:1 \ taprio num_tc 8 map 0 1 2 3 4 5 6 7 \ queues 1@0 1@1 1@2 1@3 1@4 1@5 1@6 1@7 base-time 0 \ sched-entry S 0x7f 990000 sched-entry S 0x80 100000 \ flags 0x0 clockid CLOCK_TAI Unable to handle kernel paging request at virtual address fffffffffffffff8 [fffffffffffffff8] pgd=0000000000000000, p4d=0000000000000000 Internal error: Oops: 96000004 [#1] PREEMPT SMP Call trace: taprio_dump+0x27c/0x310 vsc9959_port_setup_tc+0x1f4/0x460 felix_port_setup_tc+0x24/0x3c dsa_slave_setup_tc+0x54/0x27c taprio_disable_offload.isra.0+0x58/0xe0 taprio_destroy+0x80/0x104 qdisc_create+0x240/0x470 tc_modify_qdisc+0x1fc/0x6b0 rtnetlink_rcv_msg+0x12c/0x390 netlink_rcv_skb+0x5c/0x130 rtnetlink_rcv+0x1c/0x2c Fix this by keeping track of the operations we made, and undo the offload only if we actually did it. I've added "bool offloaded" inside a 4 byte hole between "int clockid" and "atomic64_t picos_per_byte". Now the first cache line looks like below: $ pahole -C taprio_sched net/sched/sch_taprio.o struct taprio_sched { struct Qdisc * * qdiscs; /* 0 8 */ struct Qdisc * root; /* 8 8 */ u32 flags; /* 16 4 */ enum tk_offsets tk_offset; /* 20 4 */ int clockid; /* 24 4 */ bool offloaded; /* 28 1 */ /* XXX 3 bytes hole, try to pack */ atomic64_t picos_per_byte; /* 32 0 */ /* XXX 8 bytes hole, try to pack */ spinlock_t current_entry_lock; /* 40 0 */ /* XXX 8 bytes hole, try to pack */ struct sched_entry * current_entry; /* 48 8 */ struct sched_gate_list * oper_sched; /* 56 8 */ /* --- cacheline 1 boundary (64 bytes) --- */

References

►

URL

Tags

	https://git.kernel.org/stable/c/d12a1eb07003e597077329767c6aa86a7e972c76
	https://git.kernel.org/stable/c/586def6ebed195f3594a4884f7c5334d0e1ad1bb
	https://git.kernel.org/stable/c/f58e43184226e5e9662088ccf1389e424a3a4cbd
	https://git.kernel.org/stable/c/c7c9c7eb305ab8b4e93e4e4e1b78d8cfcbc26323
	https://git.kernel.org/stable/c/db46e3a88a09c5cf7e505664d01da7238cd56c92

Impacted products

Vendor

Product

Version

►

Linux

Version: 9c66d15646760eb8982242b4531c4d4fd36118fd
Version: 9c66d15646760eb8982242b4531c4d4fd36118fd
Version: 9c66d15646760eb8982242b4531c4d4fd36118fd
Version: 9c66d15646760eb8982242b4531c4d4fd36118fd
Version: 9c66d15646760eb8982242b4531c4d4fd36118fd

Linux

Version: 5.4

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.454Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d12a1eb07003e597077329767c6aa86a7e972c76"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/586def6ebed195f3594a4884f7c5334d0e1ad1bb"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f58e43184226e5e9662088ccf1389e424a3a4cbd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c7c9c7eb305ab8b4e93e4e4e1b78d8cfcbc26323"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/db46e3a88a09c5cf7e505664d01da7238cd56c92"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2022-48644",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:46:17.630673Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:11.100Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/sched/sch_taprio.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d12a1eb07003e597077329767c6aa86a7e972c76",
              "status": "affected",
              "version": "9c66d15646760eb8982242b4531c4d4fd36118fd",
              "versionType": "git"
            },
            {
              "lessThan": "586def6ebed195f3594a4884f7c5334d0e1ad1bb",
              "status": "affected",
              "version": "9c66d15646760eb8982242b4531c4d4fd36118fd",
              "versionType": "git"
            },
            {
              "lessThan": "f58e43184226e5e9662088ccf1389e424a3a4cbd",
              "status": "affected",
              "version": "9c66d15646760eb8982242b4531c4d4fd36118fd",
              "versionType": "git"
            },
            {
              "lessThan": "c7c9c7eb305ab8b4e93e4e4e1b78d8cfcbc26323",
              "status": "affected",
              "version": "9c66d15646760eb8982242b4531c4d4fd36118fd",
              "versionType": "git"
            },
            {
              "lessThan": "db46e3a88a09c5cf7e505664d01da7238cd56c92",
              "status": "affected",
              "version": "9c66d15646760eb8982242b4531c4d4fd36118fd",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/sched/sch_taprio.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.4"
            },
            {
              "lessThan": "5.4",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.146",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.71",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.19.*",
              "status": "unaffected",
              "version": "5.19.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.215",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.146",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.71",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.19.12",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.0",
                  "versionStartIncluding": "5.4",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: taprio: avoid disabling offload when it was never enabled\n\nIn an incredibly strange API design decision, qdisc-\u003edestroy() gets\ncalled even if qdisc-\u003einit() never succeeded, not exclusively since\ncommit 87b60cfacf9f (\"net_sched: fix error recovery at qdisc creation\"),\nbut apparently also earlier (in the case of qdisc_create_dflt()).\n\nThe taprio qdisc does not fully acknowledge this when it attempts full\noffload, because it starts off with q-\u003eflags = TAPRIO_FLAGS_INVALID in\ntaprio_init(), then it replaces q-\u003eflags with TCA_TAPRIO_ATTR_FLAGS\nparsed from netlink (in taprio_change(), tail called from taprio_init()).\n\nBut in taprio_destroy(), we call taprio_disable_offload(), and this\ndetermines what to do based on FULL_OFFLOAD_IS_ENABLED(q-\u003eflags).\n\nBut looking at the implementation of FULL_OFFLOAD_IS_ENABLED()\n(a bitwise check of bit 1 in q-\u003eflags), it is invalid to call this macro\non q-\u003eflags when it contains TAPRIO_FLAGS_INVALID, because that is set\nto U32_MAX, and therefore FULL_OFFLOAD_IS_ENABLED() will return true on\nan invalid set of flags.\n\nAs a result, it is possible to crash the kernel if user space forces an\nerror between setting q-\u003eflags = TAPRIO_FLAGS_INVALID, and the calling\nof taprio_enable_offload(). This is because drivers do not expect the\noffload to be disabled when it was never enabled.\n\nThe error that we force here is to attach taprio as a non-root qdisc,\nbut instead as child of an mqprio root qdisc:\n\n$ tc qdisc add dev swp0 root handle 1: \\\n\tmqprio num_tc 8 map 0 1 2 3 4 5 6 7 \\\n\tqueues 1@0 1@1 1@2 1@3 1@4 1@5 1@6 1@7 hw 0\n$ tc qdisc replace dev swp0 parent 1:1 \\\n\ttaprio num_tc 8 map 0 1 2 3 4 5 6 7 \\\n\tqueues 1@0 1@1 1@2 1@3 1@4 1@5 1@6 1@7 base-time 0 \\\n\tsched-entry S 0x7f 990000 sched-entry S 0x80 100000 \\\n\tflags 0x0 clockid CLOCK_TAI\nUnable to handle kernel paging request at virtual address fffffffffffffff8\n[fffffffffffffff8] pgd=0000000000000000, p4d=0000000000000000\nInternal error: Oops: 96000004 [#1] PREEMPT SMP\nCall trace:\n taprio_dump+0x27c/0x310\n vsc9959_port_setup_tc+0x1f4/0x460\n felix_port_setup_tc+0x24/0x3c\n dsa_slave_setup_tc+0x54/0x27c\n taprio_disable_offload.isra.0+0x58/0xe0\n taprio_destroy+0x80/0x104\n qdisc_create+0x240/0x470\n tc_modify_qdisc+0x1fc/0x6b0\n rtnetlink_rcv_msg+0x12c/0x390\n netlink_rcv_skb+0x5c/0x130\n rtnetlink_rcv+0x1c/0x2c\n\nFix this by keeping track of the operations we made, and undo the\noffload only if we actually did it.\n\nI\u0027ve added \"bool offloaded\" inside a 4 byte hole between \"int clockid\"\nand \"atomic64_t picos_per_byte\". Now the first cache line looks like\nbelow:\n\n$ pahole -C taprio_sched net/sched/sch_taprio.o\nstruct taprio_sched {\n        struct Qdisc * *           qdiscs;               /*     0     8 */\n        struct Qdisc *             root;                 /*     8     8 */\n        u32                        flags;                /*    16     4 */\n        enum tk_offsets            tk_offset;            /*    20     4 */\n        int                        clockid;              /*    24     4 */\n        bool                       offloaded;            /*    28     1 */\n\n        /* XXX 3 bytes hole, try to pack */\n\n        atomic64_t                 picos_per_byte;       /*    32     0 */\n\n        /* XXX 8 bytes hole, try to pack */\n\n        spinlock_t                 current_entry_lock;   /*    40     0 */\n\n        /* XXX 8 bytes hole, try to pack */\n\n        struct sched_entry *       current_entry;        /*    48     8 */\n        struct sched_gate_list *   oper_sched;           /*    56     8 */\n        /* --- cacheline 1 boundary (64 bytes) --- */"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:20:22.221Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d12a1eb07003e597077329767c6aa86a7e972c76"
        },
        {
          "url": "https://git.kernel.org/stable/c/586def6ebed195f3594a4884f7c5334d0e1ad1bb"
        },
        {
          "url": "https://git.kernel.org/stable/c/f58e43184226e5e9662088ccf1389e424a3a4cbd"
        },
        {
          "url": "https://git.kernel.org/stable/c/c7c9c7eb305ab8b4e93e4e4e1b78d8cfcbc26323"
        },
        {
          "url": "https://git.kernel.org/stable/c/db46e3a88a09c5cf7e505664d01da7238cd56c92"
        }
      ],
      "title": "net/sched: taprio: avoid disabling offload when it was never enabled",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48644",
    "datePublished": "2024-04-28T13:00:07.584Z",
    "dateReserved": "2024-02-25T13:44:28.316Z",
    "dateUpdated": "2025-05-04T08:20:22.221Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26965 (GCVE-0-2024-26965)

Vulnerability from cvelistv5

Published

2024-05-01 05:19

Modified

2025-05-04 09:00

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid possible out-of-bound access when the table is traversed by functions like qcom_find_freq() or qcom_find_freq_floor(). Only compile tested.

References

►

URL

Tags

	https://git.kernel.org/stable/c/99740c4791dc8019b0d758c5389ca6d1c0604d95
	https://git.kernel.org/stable/c/86bf75d9158f511db7530bc82a84b19a5134d089
	https://git.kernel.org/stable/c/3ff4a0f6a8f0ad4b4ee9e908bdfc3cacb7be4060
	https://git.kernel.org/stable/c/8f562f3b25177c2055b20fd8cf000496f6fa9194
	https://git.kernel.org/stable/c/537040c257ab4cd0673fbae048f3940c8ea2e589
	https://git.kernel.org/stable/c/7e9926fef71e514b4a8ea9d11d5a84d52b181362
	https://git.kernel.org/stable/c/ae99e199037c580b7350bfa3596f447a53bcf01f
	https://git.kernel.org/stable/c/ca2cf98d46748373e830a13d85d215d64a2d9bf2
	https://git.kernel.org/stable/c/e2c02a85bf53ae86d79b5fccf0a75ac0b78e0c96

Impacted products

Vendor

Product

Version

►

Linux

Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6
Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6
Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6
Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6
Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6
Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6
Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6
Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6
Version: d8b212014e69d6b6323773ce6898f224ef4ed0d6

Linux

Version: 3.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26965",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T17:50:48.637005Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:04.278Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.666Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/99740c4791dc8019b0d758c5389ca6d1c0604d95"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/86bf75d9158f511db7530bc82a84b19a5134d089"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3ff4a0f6a8f0ad4b4ee9e908bdfc3cacb7be4060"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8f562f3b25177c2055b20fd8cf000496f6fa9194"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/537040c257ab4cd0673fbae048f3940c8ea2e589"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7e9926fef71e514b4a8ea9d11d5a84d52b181362"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ae99e199037c580b7350bfa3596f447a53bcf01f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ca2cf98d46748373e830a13d85d215d64a2d9bf2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e2c02a85bf53ae86d79b5fccf0a75ac0b78e0c96"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/qcom/mmcc-msm8974.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "99740c4791dc8019b0d758c5389ca6d1c0604d95",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            },
            {
              "lessThan": "86bf75d9158f511db7530bc82a84b19a5134d089",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            },
            {
              "lessThan": "3ff4a0f6a8f0ad4b4ee9e908bdfc3cacb7be4060",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            },
            {
              "lessThan": "8f562f3b25177c2055b20fd8cf000496f6fa9194",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            },
            {
              "lessThan": "537040c257ab4cd0673fbae048f3940c8ea2e589",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            },
            {
              "lessThan": "7e9926fef71e514b4a8ea9d11d5a84d52b181362",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            },
            {
              "lessThan": "ae99e199037c580b7350bfa3596f447a53bcf01f",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            },
            {
              "lessThan": "ca2cf98d46748373e830a13d85d215d64a2d9bf2",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            },
            {
              "lessThan": "e2c02a85bf53ae86d79b5fccf0a75ac0b78e0c96",
              "status": "affected",
              "version": "d8b212014e69d6b6323773ce6898f224ef4ed0d6",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/qcom/mmcc-msm8974.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.14"
            },
            {
              "lessThan": "3.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.312",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.312",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: qcom: mmcc-msm8974: fix terminating of frequency table arrays\n\nThe frequency table arrays are supposed to be terminated with an\nempty element. Add such entry to the end of the arrays where it\nis missing in order to avoid possible out-of-bound access when\nthe table is traversed by functions like qcom_find_freq() or\nqcom_find_freq_floor().\n\nOnly compile tested."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:00:58.832Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/99740c4791dc8019b0d758c5389ca6d1c0604d95"
        },
        {
          "url": "https://git.kernel.org/stable/c/86bf75d9158f511db7530bc82a84b19a5134d089"
        },
        {
          "url": "https://git.kernel.org/stable/c/3ff4a0f6a8f0ad4b4ee9e908bdfc3cacb7be4060"
        },
        {
          "url": "https://git.kernel.org/stable/c/8f562f3b25177c2055b20fd8cf000496f6fa9194"
        },
        {
          "url": "https://git.kernel.org/stable/c/537040c257ab4cd0673fbae048f3940c8ea2e589"
        },
        {
          "url": "https://git.kernel.org/stable/c/7e9926fef71e514b4a8ea9d11d5a84d52b181362"
        },
        {
          "url": "https://git.kernel.org/stable/c/ae99e199037c580b7350bfa3596f447a53bcf01f"
        },
        {
          "url": "https://git.kernel.org/stable/c/ca2cf98d46748373e830a13d85d215d64a2d9bf2"
        },
        {
          "url": "https://git.kernel.org/stable/c/e2c02a85bf53ae86d79b5fccf0a75ac0b78e0c96"
        }
      ],
      "title": "clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26965",
    "datePublished": "2024-05-01T05:19:32.635Z",
    "dateReserved": "2024-02-19T14:20:24.201Z",
    "dateUpdated": "2025-05-04T09:00:58.832Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2022-48700 (GCVE-0-2022-48700)

Vulnerability from cvelistv5

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "providerMetadata": {
        "dateUpdated": "2024-12-19T11:01:44.556Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "rejectedReasons": [
        {
          "lang": "en",
          "value": "This CVE ID has been rejected or withdrawn by its CVE Numbering Authority."
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2022-48700",
    "datePublished": "2024-05-03T15:12:16.246Z",
    "dateRejected": "2024-12-19T11:01:44.556Z",
    "dateReserved": "2024-05-03T14:55:07.145Z",
    "dateUpdated": "2024-12-19T11:01:44.556Z",
    "state": "REJECTED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26820 (GCVE-0-2024-26820)

Vulnerability from cvelistv5

Published

2024-04-17 09:43

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed If hv_netvsc driver is unloaded and reloaded, the NET_DEVICE_REGISTER handler cannot perform VF register successfully as the register call is received before netvsc_probe is finished. This is because we register register_netdevice_notifier() very early( even before vmbus_driver_register()). To fix this, we try to register each such matching VF( if it is visible as a netdevice) at the end of netvsc_probe.

References

►

URL

Tags

	https://git.kernel.org/stable/c/bcb7164258d0a9a8aa2e73ddccc2d78f67d2519d
	https://git.kernel.org/stable/c/c7441c77c91e47f653104be8353b44a3366a5366
	https://git.kernel.org/stable/c/5b10a88f64c0315cfdef45de0aaaa4eef57de0b7
	https://git.kernel.org/stable/c/b6d46f306b3964d05055ddaa96b58cd8bd3a472c
	https://git.kernel.org/stable/c/309ef7de5d840e17607e7d65cbf297c0564433ef
	https://git.kernel.org/stable/c/a71302c8638939c45e4ba5a99ea438185fd3f418
	https://git.kernel.org/stable/c/4d29a58d96a78728cb01ee29ed70dc4bd642f135
	https://git.kernel.org/stable/c/9cae43da9867412f8bd09aee5c8a8dc5e8dc3dc2

Impacted products

Vendor

Product

Version

►

Linux

Version: 028aa21f9e92536038cabb834c15d08f5c894382
Version: 997d895fa495fb3421983923219bba93f1a793ee
Version: ff6c130e48a79c826cbc2427bd8b34a7592460cc
Version: 97683466e24c801ee4e865ce90ac7e355db2da59
Version: 5dd83db613be8e5c5d30efed7f42780e9eb18380
Version: 7350c460f7f48a8653a15c5c90fc9070aaa29535
Version: 85520856466ed6bc3b1ccb013cddac70ceb437db
Version: 85520856466ed6bc3b1ccb013cddac70ceb437db

Linux

Version: 6.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26820",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-05-28T19:59:53.031569Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:49:04.707Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.523Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/bcb7164258d0a9a8aa2e73ddccc2d78f67d2519d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c7441c77c91e47f653104be8353b44a3366a5366"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5b10a88f64c0315cfdef45de0aaaa4eef57de0b7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b6d46f306b3964d05055ddaa96b58cd8bd3a472c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/309ef7de5d840e17607e7d65cbf297c0564433ef"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a71302c8638939c45e4ba5a99ea438185fd3f418"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4d29a58d96a78728cb01ee29ed70dc4bd642f135"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9cae43da9867412f8bd09aee5c8a8dc5e8dc3dc2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/hyperv/netvsc_drv.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "bcb7164258d0a9a8aa2e73ddccc2d78f67d2519d",
              "status": "affected",
              "version": "028aa21f9e92536038cabb834c15d08f5c894382",
              "versionType": "git"
            },
            {
              "lessThan": "c7441c77c91e47f653104be8353b44a3366a5366",
              "status": "affected",
              "version": "997d895fa495fb3421983923219bba93f1a793ee",
              "versionType": "git"
            },
            {
              "lessThan": "5b10a88f64c0315cfdef45de0aaaa4eef57de0b7",
              "status": "affected",
              "version": "ff6c130e48a79c826cbc2427bd8b34a7592460cc",
              "versionType": "git"
            },
            {
              "lessThan": "b6d46f306b3964d05055ddaa96b58cd8bd3a472c",
              "status": "affected",
              "version": "97683466e24c801ee4e865ce90ac7e355db2da59",
              "versionType": "git"
            },
            {
              "lessThan": "309ef7de5d840e17607e7d65cbf297c0564433ef",
              "status": "affected",
              "version": "5dd83db613be8e5c5d30efed7f42780e9eb18380",
              "versionType": "git"
            },
            {
              "lessThan": "a71302c8638939c45e4ba5a99ea438185fd3f418",
              "status": "affected",
              "version": "7350c460f7f48a8653a15c5c90fc9070aaa29535",
              "versionType": "git"
            },
            {
              "lessThan": "4d29a58d96a78728cb01ee29ed70dc4bd642f135",
              "status": "affected",
              "version": "85520856466ed6bc3b1ccb013cddac70ceb437db",
              "versionType": "git"
            },
            {
              "lessThan": "9cae43da9867412f8bd09aee5c8a8dc5e8dc3dc2",
              "status": "affected",
              "version": "85520856466ed6bc3b1ccb013cddac70ceb437db",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/hyperv/netvsc_drv.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.7"
            },
            {
              "lessThan": "6.7",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.310",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.272",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.213",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.152",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.79",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.310",
                  "versionStartIncluding": "4.19.301",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.272",
                  "versionStartIncluding": "5.4.263",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.213",
                  "versionStartIncluding": "5.10.203",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.152",
                  "versionStartIncluding": "5.15.141",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.79",
                  "versionStartIncluding": "6.1.65",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "versionStartIncluding": "6.6.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "6.7",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "6.7",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nhv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed\n\nIf hv_netvsc driver is unloaded and reloaded, the NET_DEVICE_REGISTER\nhandler cannot perform VF register successfully as the register call\nis received before netvsc_probe is finished. This is because we\nregister register_netdevice_notifier() very early( even before\nvmbus_driver_register()).\nTo fix this, we try to register each such matching VF( if it is visible\nas a netdevice) at the end of netvsc_probe."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:17.151Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/bcb7164258d0a9a8aa2e73ddccc2d78f67d2519d"
        },
        {
          "url": "https://git.kernel.org/stable/c/c7441c77c91e47f653104be8353b44a3366a5366"
        },
        {
          "url": "https://git.kernel.org/stable/c/5b10a88f64c0315cfdef45de0aaaa4eef57de0b7"
        },
        {
          "url": "https://git.kernel.org/stable/c/b6d46f306b3964d05055ddaa96b58cd8bd3a472c"
        },
        {
          "url": "https://git.kernel.org/stable/c/309ef7de5d840e17607e7d65cbf297c0564433ef"
        },
        {
          "url": "https://git.kernel.org/stable/c/a71302c8638939c45e4ba5a99ea438185fd3f418"
        },
        {
          "url": "https://git.kernel.org/stable/c/4d29a58d96a78728cb01ee29ed70dc4bd642f135"
        },
        {
          "url": "https://git.kernel.org/stable/c/9cae43da9867412f8bd09aee5c8a8dc5e8dc3dc2"
        }
      ],
      "title": "hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26820",
    "datePublished": "2024-04-17T09:43:47.966Z",
    "dateReserved": "2024-02-19T14:20:24.180Z",
    "dateUpdated": "2025-05-04T08:57:17.151Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47184 (GCVE-0-2021-47184)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:05

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix NULL ptr dereference on VSI filter sync Remove the reason of null pointer dereference in sync VSI filters. Added new I40E_VSI_RELEASING flag to signalize deleting and releasing of VSI resources to sync this thread with sync filters subtask. Without this patch it is possible to start update the VSI filter list after VSI is removed, that's causing a kernel oops.

References

►

URL

Tags

	https://git.kernel.org/stable/c/78f2a9e831f9610e3655a0be5e675e1aa2472089
	https://git.kernel.org/stable/c/87c421ab4a43433cb009fea44bbbc77f46913e1d
	https://git.kernel.org/stable/c/c30162da91327e4cdf7cd03079f096bb3654738c
	https://git.kernel.org/stable/c/f866513ead4370402428ef724b03c3312295c178
	https://git.kernel.org/stable/c/e91e8427a1e1633a0261e3bb0201c836ac5b3890
	https://git.kernel.org/stable/c/37d9e304acd903a445df8208b8a13d707902dea6

Impacted products

Vendor

Product

Version

►

Linux

Version: 41c445ff0f482bb6e6b72dcee9e598e20575f743
Version: 41c445ff0f482bb6e6b72dcee9e598e20575f743
Version: 41c445ff0f482bb6e6b72dcee9e598e20575f743
Version: 41c445ff0f482bb6e6b72dcee9e598e20575f743
Version: 41c445ff0f482bb6e6b72dcee9e598e20575f743
Version: 41c445ff0f482bb6e6b72dcee9e598e20575f743

Linux

Version: 3.12

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47184",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-10T19:33:14.911867Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:13:59.992Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.468Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/78f2a9e831f9610e3655a0be5e675e1aa2472089"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/87c421ab4a43433cb009fea44bbbc77f46913e1d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c30162da91327e4cdf7cd03079f096bb3654738c"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f866513ead4370402428ef724b03c3312295c178"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e91e8427a1e1633a0261e3bb0201c836ac5b3890"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/37d9e304acd903a445df8208b8a13d707902dea6"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/i40e/i40e.h",
            "drivers/net/ethernet/intel/i40e/i40e_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "78f2a9e831f9610e3655a0be5e675e1aa2472089",
              "status": "affected",
              "version": "41c445ff0f482bb6e6b72dcee9e598e20575f743",
              "versionType": "git"
            },
            {
              "lessThan": "87c421ab4a43433cb009fea44bbbc77f46913e1d",
              "status": "affected",
              "version": "41c445ff0f482bb6e6b72dcee9e598e20575f743",
              "versionType": "git"
            },
            {
              "lessThan": "c30162da91327e4cdf7cd03079f096bb3654738c",
              "status": "affected",
              "version": "41c445ff0f482bb6e6b72dcee9e598e20575f743",
              "versionType": "git"
            },
            {
              "lessThan": "f866513ead4370402428ef724b03c3312295c178",
              "status": "affected",
              "version": "41c445ff0f482bb6e6b72dcee9e598e20575f743",
              "versionType": "git"
            },
            {
              "lessThan": "e91e8427a1e1633a0261e3bb0201c836ac5b3890",
              "status": "affected",
              "version": "41c445ff0f482bb6e6b72dcee9e598e20575f743",
              "versionType": "git"
            },
            {
              "lessThan": "37d9e304acd903a445df8208b8a13d707902dea6",
              "status": "affected",
              "version": "41c445ff0f482bb6e6b72dcee9e598e20575f743",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ethernet/intel/i40e/i40e.h",
            "drivers/net/ethernet/intel/i40e/i40e_main.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.12"
            },
            {
              "lessThan": "3.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.256",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.218",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.162",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.82",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.256",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.218",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.162",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.82",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.5",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "versionStartIncluding": "3.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ni40e: Fix NULL ptr dereference on VSI filter sync\n\nRemove the reason of null pointer dereference in sync VSI filters.\nAdded new I40E_VSI_RELEASING flag to signalize deleting and releasing\nof VSI resources to sync this thread with sync filters subtask.\nWithout this patch it is possible to start update the VSI filter list\nafter VSI is removed, that\u0027s causing a kernel oops."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:05:55.638Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/78f2a9e831f9610e3655a0be5e675e1aa2472089"
        },
        {
          "url": "https://git.kernel.org/stable/c/87c421ab4a43433cb009fea44bbbc77f46913e1d"
        },
        {
          "url": "https://git.kernel.org/stable/c/c30162da91327e4cdf7cd03079f096bb3654738c"
        },
        {
          "url": "https://git.kernel.org/stable/c/f866513ead4370402428ef724b03c3312295c178"
        },
        {
          "url": "https://git.kernel.org/stable/c/e91e8427a1e1633a0261e3bb0201c836ac5b3890"
        },
        {
          "url": "https://git.kernel.org/stable/c/37d9e304acd903a445df8208b8a13d707902dea6"
        }
      ],
      "title": "i40e: Fix NULL ptr dereference on VSI filter sync",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47184",
    "datePublished": "2024-04-10T18:56:25.037Z",
    "dateReserved": "2024-03-25T09:12:14.112Z",
    "dateUpdated": "2025-05-04T07:05:55.638Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26739 (GCVE-0-2024-26739)

Vulnerability from cvelistv5

Published

2024-04-03 17:00

Modified

2025-06-04 12:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: net/sched: act_mirred: don't override retval if we already lost the skb If we're redirecting the skb, and haven't called tcf_mirred_forward(), yet, we need to tell the core to drop the skb by setting the retcode to SHOT. If we have called tcf_mirred_forward(), however, the skb is out of our hands and returning SHOT will lead to UaF. Move the retval override to the error path which actually need it.

References

►

URL

Tags

	https://git.kernel.org/stable/c/0117fe0a4615a7c8d30d6ebcbf87332fbe63e6fd
	https://git.kernel.org/stable/c/9d3ef89b6a5e9f2e940de2cef3d543be0be8dec5
	https://git.kernel.org/stable/c/e873e8f7d03a2ee5b77fb1a305c782fed98e2754
	https://git.kernel.org/stable/c/28cdbbd38a4413b8eff53399b3f872fd4e80db9d
	https://git.kernel.org/stable/c/f4e294bbdca8ac8757db436fc82214f3882fc7e7
	https://git.kernel.org/stable/c/166c2c8a6a4dc2e4ceba9e10cfe81c3e469e3210

Impacted products

Vendor

Product

Version

►

Linux

Version: e5cf1baf92cb785b90390db1c624948e70c8b8bd
Version: e5cf1baf92cb785b90390db1c624948e70c8b8bd
Version: e5cf1baf92cb785b90390db1c624948e70c8b8bd
Version: e5cf1baf92cb785b90390db1c624948e70c8b8bd
Version: e5cf1baf92cb785b90390db1c624948e70c8b8bd
Version: e5cf1baf92cb785b90390db1c624948e70c8b8bd

Linux

Version: 4.19

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.024Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/28cdbbd38a4413b8eff53399b3f872fd4e80db9d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f4e294bbdca8ac8757db436fc82214f3882fc7e7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/166c2c8a6a4dc2e4ceba9e10cfe81c3e469e3210"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26739",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:51:53.930424Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:18.399Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/sched/act_mirred.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "0117fe0a4615a7c8d30d6ebcbf87332fbe63e6fd",
              "status": "affected",
              "version": "e5cf1baf92cb785b90390db1c624948e70c8b8bd",
              "versionType": "git"
            },
            {
              "lessThan": "9d3ef89b6a5e9f2e940de2cef3d543be0be8dec5",
              "status": "affected",
              "version": "e5cf1baf92cb785b90390db1c624948e70c8b8bd",
              "versionType": "git"
            },
            {
              "lessThan": "e873e8f7d03a2ee5b77fb1a305c782fed98e2754",
              "status": "affected",
              "version": "e5cf1baf92cb785b90390db1c624948e70c8b8bd",
              "versionType": "git"
            },
            {
              "lessThan": "28cdbbd38a4413b8eff53399b3f872fd4e80db9d",
              "status": "affected",
              "version": "e5cf1baf92cb785b90390db1c624948e70c8b8bd",
              "versionType": "git"
            },
            {
              "lessThan": "f4e294bbdca8ac8757db436fc82214f3882fc7e7",
              "status": "affected",
              "version": "e5cf1baf92cb785b90390db1c624948e70c8b8bd",
              "versionType": "git"
            },
            {
              "lessThan": "166c2c8a6a4dc2e4ceba9e10cfe81c3e469e3210",
              "status": "affected",
              "version": "e5cf1baf92cb785b90390db1c624948e70c8b8bd",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/sched/act_mirred.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.19"
            },
            {
              "lessThan": "4.19",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.238",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.182",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.136",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.19",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.238",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.182",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.136",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.19",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.7",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "4.19",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet/sched: act_mirred: don\u0027t override retval if we already lost the skb\n\nIf we\u0027re redirecting the skb, and haven\u0027t called tcf_mirred_forward(),\nyet, we need to tell the core to drop the skb by setting the retcode\nto SHOT. If we have called tcf_mirred_forward(), however, the skb\nis out of our hands and returning SHOT will lead to UaF.\n\nMove the retval override to the error path which actually need it."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-06-04T12:57:14.045Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/0117fe0a4615a7c8d30d6ebcbf87332fbe63e6fd"
        },
        {
          "url": "https://git.kernel.org/stable/c/9d3ef89b6a5e9f2e940de2cef3d543be0be8dec5"
        },
        {
          "url": "https://git.kernel.org/stable/c/e873e8f7d03a2ee5b77fb1a305c782fed98e2754"
        },
        {
          "url": "https://git.kernel.org/stable/c/28cdbbd38a4413b8eff53399b3f872fd4e80db9d"
        },
        {
          "url": "https://git.kernel.org/stable/c/f4e294bbdca8ac8757db436fc82214f3882fc7e7"
        },
        {
          "url": "https://git.kernel.org/stable/c/166c2c8a6a4dc2e4ceba9e10cfe81c3e469e3210"
        }
      ],
      "title": "net/sched: act_mirred: don\u0027t override retval if we already lost the skb",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26739",
    "datePublished": "2024-04-03T17:00:24.879Z",
    "dateReserved": "2024-02-19T14:20:24.166Z",
    "dateUpdated": "2025-06-04T12:57:14.045Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26966 (GCVE-0-2024-26966)

Vulnerability from cvelistv5

Published

2024-05-01 05:19

Modified

2025-05-04 09:01

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entry to the end of the arrays where it is missing in order to avoid possible out-of-bound access when the table is traversed by functions like qcom_find_freq() or qcom_find_freq_floor(). Only compile tested.

References

►

URL

Tags

	https://git.kernel.org/stable/c/5533686e99b04994d7c4877dc0e4282adc9444a2
	https://git.kernel.org/stable/c/b2dfb216f32627c2f6a8041f2d9d56d102ab87c0
	https://git.kernel.org/stable/c/a09aecb6cb482de88301c43bf00a6c8726c4d34f
	https://git.kernel.org/stable/c/3aedcf3755c74dafc187eb76acb04e3e6348b1a9
	https://git.kernel.org/stable/c/185de0b7cdeaad8b89ebd4c8a258ff2f21adba99
	https://git.kernel.org/stable/c/9b4c4546dd61950e80ffdca1bf6925f42b665b03
	https://git.kernel.org/stable/c/7e5432401536117c316d7f3b21d46b64c1514f38
	https://git.kernel.org/stable/c/5638330150db2cc30b53eed04e481062faa3ece8
	https://git.kernel.org/stable/c/a903cfd38d8dee7e754fb89fd1bebed99e28003d

Impacted products

Vendor

Product

Version

►

Linux

Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd
Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd
Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd
Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd
Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd
Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd
Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd
Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd
Version: 2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd

Linux

Version: 3.17

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:05.707Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5533686e99b04994d7c4877dc0e4282adc9444a2"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b2dfb216f32627c2f6a8041f2d9d56d102ab87c0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a09aecb6cb482de88301c43bf00a6c8726c4d34f"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3aedcf3755c74dafc187eb76acb04e3e6348b1a9"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/185de0b7cdeaad8b89ebd4c8a258ff2f21adba99"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/9b4c4546dd61950e80ffdca1bf6925f42b665b03"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7e5432401536117c316d7f3b21d46b64c1514f38"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/5638330150db2cc30b53eed04e481062faa3ece8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/a903cfd38d8dee7e754fb89fd1bebed99e28003d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26966",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:45:23.145806Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:47.058Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/qcom/mmcc-apq8084.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "5533686e99b04994d7c4877dc0e4282adc9444a2",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            },
            {
              "lessThan": "b2dfb216f32627c2f6a8041f2d9d56d102ab87c0",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            },
            {
              "lessThan": "a09aecb6cb482de88301c43bf00a6c8726c4d34f",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            },
            {
              "lessThan": "3aedcf3755c74dafc187eb76acb04e3e6348b1a9",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            },
            {
              "lessThan": "185de0b7cdeaad8b89ebd4c8a258ff2f21adba99",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            },
            {
              "lessThan": "9b4c4546dd61950e80ffdca1bf6925f42b665b03",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            },
            {
              "lessThan": "7e5432401536117c316d7f3b21d46b64c1514f38",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            },
            {
              "lessThan": "5638330150db2cc30b53eed04e481062faa3ece8",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            },
            {
              "lessThan": "a903cfd38d8dee7e754fb89fd1bebed99e28003d",
              "status": "affected",
              "version": "2b46cd23a5a2cf0b8d3583338b63409f5e78e7cd",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/clk/qcom/mmcc-apq8084.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.17"
            },
            {
              "lessThan": "3.17",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.312",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.312",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "3.17",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nclk: qcom: mmcc-apq8084: fix terminating of frequency table arrays\n\nThe frequency table arrays are supposed to be terminated with an\nempty element. Add such entry to the end of the arrays where it\nis missing in order to avoid possible out-of-bound access when\nthe table is traversed by functions like qcom_find_freq() or\nqcom_find_freq_floor().\n\nOnly compile tested."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:01:00.828Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/5533686e99b04994d7c4877dc0e4282adc9444a2"
        },
        {
          "url": "https://git.kernel.org/stable/c/b2dfb216f32627c2f6a8041f2d9d56d102ab87c0"
        },
        {
          "url": "https://git.kernel.org/stable/c/a09aecb6cb482de88301c43bf00a6c8726c4d34f"
        },
        {
          "url": "https://git.kernel.org/stable/c/3aedcf3755c74dafc187eb76acb04e3e6348b1a9"
        },
        {
          "url": "https://git.kernel.org/stable/c/185de0b7cdeaad8b89ebd4c8a258ff2f21adba99"
        },
        {
          "url": "https://git.kernel.org/stable/c/9b4c4546dd61950e80ffdca1bf6925f42b665b03"
        },
        {
          "url": "https://git.kernel.org/stable/c/7e5432401536117c316d7f3b21d46b64c1514f38"
        },
        {
          "url": "https://git.kernel.org/stable/c/5638330150db2cc30b53eed04e481062faa3ece8"
        },
        {
          "url": "https://git.kernel.org/stable/c/a903cfd38d8dee7e754fb89fd1bebed99e28003d"
        }
      ],
      "title": "clk: qcom: mmcc-apq8084: fix terminating of frequency table arrays",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26966",
    "datePublished": "2024-05-01T05:19:36.656Z",
    "dateReserved": "2024-02-19T14:20:24.201Z",
    "dateUpdated": "2025-05-04T09:01:00.828Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26960 (GCVE-0-2024-26960)

Vulnerability from cvelistv5

Published

2024-05-01 05:19

Modified

2025-05-04 09:00

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: mm: swap: fix race between free_swap_and_cache() and swapoff() There was previously a theoretical window where swapoff() could run and teardown a swap_info_struct while a call to free_swap_and_cache() was running in another thread. This could cause, amongst other bad possibilities, swap_page_trans_huge_swapped() (called by free_swap_and_cache()) to access the freed memory for swap_map. This is a theoretical problem and I haven't been able to provoke it from a test case. But there has been agreement based on code review that this is possible (see link below). Fix it by using get_swap_device()/put_swap_device(), which will stall swapoff(). There was an extra check in _swap_info_get() to confirm that the swap entry was not free. This isn't present in get_swap_device() because it doesn't make sense in general due to the race between getting the reference and swapoff. So I've added an equivalent check directly in free_swap_and_cache(). Details of how to provoke one possible issue (thanks to David Hildenbrand for deriving this): --8<----- __swap_entry_free() might be the last user and result in "count == SWAP_HAS_CACHE". swapoff->try_to_unuse() will stop as soon as soon as si->inuse_pages==0. So the question is: could someone reclaim the folio and turn si->inuse_pages==0, before we completed swap_page_trans_huge_swapped(). Imagine the following: 2 MiB folio in the swapcache. Only 2 subpages are still references by swap entries. Process 1 still references subpage 0 via swap entry. Process 2 still references subpage 1 via swap entry. Process 1 quits. Calls free_swap_and_cache(). -> count == SWAP_HAS_CACHE [then, preempted in the hypervisor etc.] Process 2 quits. Calls free_swap_and_cache(). -> count == SWAP_HAS_CACHE Process 2 goes ahead, passes swap_page_trans_huge_swapped(), and calls __try_to_reclaim_swap(). __try_to_reclaim_swap()->folio_free_swap()->delete_from_swap_cache()-> put_swap_folio()->free_swap_slot()->swapcache_free_entries()-> swap_entry_free()->swap_range_free()-> ... WRITE_ONCE(si->inuse_pages, si->inuse_pages - nr_entries); What stops swapoff to succeed after process 2 reclaimed the swap cache but before process1 finished its call to swap_page_trans_huge_swapped()? --8<-----

References

►

URL

Tags

	https://git.kernel.org/stable/c/d85c11c97ecf92d47a4b29e3faca714dc1f18d0d
	https://git.kernel.org/stable/c/2da5568ee222ce0541bfe446a07998f92ed1643e
	https://git.kernel.org/stable/c/1ede7f1d7eed1738d1b9333fd1e152ccb450b86a
	https://git.kernel.org/stable/c/0f98f6d2fb5fad00f8299b84b85b6bc1b6d7d19a
	https://git.kernel.org/stable/c/3ce4c4c653e4e478ecb15d3c88e690f12cbf6b39
	https://git.kernel.org/stable/c/363d17e7f7907c8e27a9e86968af0eaa2301787b
	https://git.kernel.org/stable/c/82b1c07a0af603e3c47b906c8e991dc96f01688e

Impacted products

Vendor

Product

Version

►

Linux

Version: 7c00bafee87c7bac7ed9eced7c161f8e5332cb4e
Version: 7c00bafee87c7bac7ed9eced7c161f8e5332cb4e
Version: 7c00bafee87c7bac7ed9eced7c161f8e5332cb4e
Version: 7c00bafee87c7bac7ed9eced7c161f8e5332cb4e
Version: 7c00bafee87c7bac7ed9eced7c161f8e5332cb4e
Version: 7c00bafee87c7bac7ed9eced7c161f8e5332cb4e
Version: 7c00bafee87c7bac7ed9eced7c161f8e5332cb4e

Linux

Version: 4.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "d85c11c97ecf",
                "status": "affected",
                "version": "7c00bafee87c",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "2da5568ee222",
                "status": "affected",
                "version": "7c00bafee87c",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "1ede7f1d7eed",
                "status": "affected",
                "version": "7c00bafee87c",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "0f98f6d2fb5f",
                "status": "affected",
                "version": "7c00bafee87c",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "3ce4c4c653e4",
                "status": "affected",
                "version": "7c00bafee87c",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "363d17e7f790",
                "status": "affected",
                "version": "7c00bafee87c",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "82b1c07a0af6",
                "status": "affected",
                "version": "7c00bafee87c",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "5.11",
                "status": "unaffected",
                "version": "5.10.215",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "6.2",
                "status": "unaffected",
                "version": "6.1.84",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "6.7",
                "status": "unaffected",
                "version": "6.6.24",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "6.9",
                "status": "unaffected",
                "version": "6.8.3",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "unaffected",
                "version": "6.9"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "4.11",
                "status": "unaffected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:4.11:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "status": "affected",
                "version": "4.11"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "5.16",
                "status": "unaffected",
                "version": "5.15.154",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "linux_kernel",
            "vendor": "linux",
            "versions": [
              {
                "lessThan": "6.8",
                "status": "unaffected",
                "version": "6.7.12",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "HIGH",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2024-26960",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-02-05T21:09:23.358079Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-362",
                "description": "CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-02-05T21:09:44.704Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:21:06.048Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/d85c11c97ecf92d47a4b29e3faca714dc1f18d0d"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/2da5568ee222ce0541bfe446a07998f92ed1643e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/1ede7f1d7eed1738d1b9333fd1e152ccb450b86a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0f98f6d2fb5fad00f8299b84b85b6bc1b6d7d19a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3ce4c4c653e4e478ecb15d3c88e690f12cbf6b39"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/363d17e7f7907c8e27a9e86968af0eaa2301787b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/82b1c07a0af603e3c47b906c8e991dc96f01688e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "mm/swapfile.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "d85c11c97ecf92d47a4b29e3faca714dc1f18d0d",
              "status": "affected",
              "version": "7c00bafee87c7bac7ed9eced7c161f8e5332cb4e",
              "versionType": "git"
            },
            {
              "lessThan": "2da5568ee222ce0541bfe446a07998f92ed1643e",
              "status": "affected",
              "version": "7c00bafee87c7bac7ed9eced7c161f8e5332cb4e",
              "versionType": "git"
            },
            {
              "lessThan": "1ede7f1d7eed1738d1b9333fd1e152ccb450b86a",
              "status": "affected",
              "version": "7c00bafee87c7bac7ed9eced7c161f8e5332cb4e",
              "versionType": "git"
            },
            {
              "lessThan": "0f98f6d2fb5fad00f8299b84b85b6bc1b6d7d19a",
              "status": "affected",
              "version": "7c00bafee87c7bac7ed9eced7c161f8e5332cb4e",
              "versionType": "git"
            },
            {
              "lessThan": "3ce4c4c653e4e478ecb15d3c88e690f12cbf6b39",
              "status": "affected",
              "version": "7c00bafee87c7bac7ed9eced7c161f8e5332cb4e",
              "versionType": "git"
            },
            {
              "lessThan": "363d17e7f7907c8e27a9e86968af0eaa2301787b",
              "status": "affected",
              "version": "7c00bafee87c7bac7ed9eced7c161f8e5332cb4e",
              "versionType": "git"
            },
            {
              "lessThan": "82b1c07a0af603e3c47b906c8e991dc96f01688e",
              "status": "affected",
              "version": "7c00bafee87c7bac7ed9eced7c161f8e5332cb4e",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "mm/swapfile.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.11"
            },
            {
              "lessThan": "4.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.154",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.24",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.12",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.154",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.84",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.24",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.12",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.3",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "versionStartIncluding": "4.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmm: swap: fix race between free_swap_and_cache() and swapoff()\n\nThere was previously a theoretical window where swapoff() could run and\nteardown a swap_info_struct while a call to free_swap_and_cache() was\nrunning in another thread.  This could cause, amongst other bad\npossibilities, swap_page_trans_huge_swapped() (called by\nfree_swap_and_cache()) to access the freed memory for swap_map.\n\nThis is a theoretical problem and I haven\u0027t been able to provoke it from a\ntest case.  But there has been agreement based on code review that this is\npossible (see link below).\n\nFix it by using get_swap_device()/put_swap_device(), which will stall\nswapoff().  There was an extra check in _swap_info_get() to confirm that\nthe swap entry was not free.  This isn\u0027t present in get_swap_device()\nbecause it doesn\u0027t make sense in general due to the race between getting\nthe reference and swapoff.  So I\u0027ve added an equivalent check directly in\nfree_swap_and_cache().\n\nDetails of how to provoke one possible issue (thanks to David Hildenbrand\nfor deriving this):\n\n--8\u003c-----\n\n__swap_entry_free() might be the last user and result in\n\"count == SWAP_HAS_CACHE\".\n\nswapoff-\u003etry_to_unuse() will stop as soon as soon as si-\u003einuse_pages==0.\n\nSo the question is: could someone reclaim the folio and turn\nsi-\u003einuse_pages==0, before we completed swap_page_trans_huge_swapped().\n\nImagine the following: 2 MiB folio in the swapcache. Only 2 subpages are\nstill references by swap entries.\n\nProcess 1 still references subpage 0 via swap entry.\nProcess 2 still references subpage 1 via swap entry.\n\nProcess 1 quits. Calls free_swap_and_cache().\n-\u003e count == SWAP_HAS_CACHE\n[then, preempted in the hypervisor etc.]\n\nProcess 2 quits. Calls free_swap_and_cache().\n-\u003e count == SWAP_HAS_CACHE\n\nProcess 2 goes ahead, passes swap_page_trans_huge_swapped(), and calls\n__try_to_reclaim_swap().\n\n__try_to_reclaim_swap()-\u003efolio_free_swap()-\u003edelete_from_swap_cache()-\u003e\nput_swap_folio()-\u003efree_swap_slot()-\u003eswapcache_free_entries()-\u003e\nswap_entry_free()-\u003eswap_range_free()-\u003e\n...\nWRITE_ONCE(si-\u003einuse_pages, si-\u003einuse_pages - nr_entries);\n\nWhat stops swapoff to succeed after process 2 reclaimed the swap cache\nbut before process1 finished its call to swap_page_trans_huge_swapped()?\n\n--8\u003c-----"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T09:00:51.074Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/d85c11c97ecf92d47a4b29e3faca714dc1f18d0d"
        },
        {
          "url": "https://git.kernel.org/stable/c/2da5568ee222ce0541bfe446a07998f92ed1643e"
        },
        {
          "url": "https://git.kernel.org/stable/c/1ede7f1d7eed1738d1b9333fd1e152ccb450b86a"
        },
        {
          "url": "https://git.kernel.org/stable/c/0f98f6d2fb5fad00f8299b84b85b6bc1b6d7d19a"
        },
        {
          "url": "https://git.kernel.org/stable/c/3ce4c4c653e4e478ecb15d3c88e690f12cbf6b39"
        },
        {
          "url": "https://git.kernel.org/stable/c/363d17e7f7907c8e27a9e86968af0eaa2301787b"
        },
        {
          "url": "https://git.kernel.org/stable/c/82b1c07a0af603e3c47b906c8e991dc96f01688e"
        }
      ],
      "title": "mm: swap: fix race between free_swap_and_cache() and swapoff()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26960",
    "datePublished": "2024-05-01T05:19:12.112Z",
    "dateReserved": "2024-02-19T14:20:24.201Z",
    "dateUpdated": "2025-05-04T09:00:51.074Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2021-47202 (GCVE-0-2021-47202)

Vulnerability from cvelistv5

Published

2024-04-10 18:56

Modified

2025-05-04 07:06

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: thermal: Fix NULL pointer dereferences in of_thermal_ functions of_parse_thermal_zones() parses the thermal-zones node and registers a thermal_zone device for each subnode. However, if a thermal zone is consuming a thermal sensor and that thermal sensor device hasn't probed yet, an attempt to set trip_point_*_temp for that thermal zone device can cause a NULL pointer dereference. Fix it. console:/sys/class/thermal/thermal_zone87 # echo 120000 > trip_point_0_temp ... Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020 ... Call trace: of_thermal_set_trip_temp+0x40/0xc4 trip_point_temp_store+0xc0/0x1dc dev_attr_store+0x38/0x88 sysfs_kf_write+0x64/0xc0 kernfs_fop_write_iter+0x108/0x1d0 vfs_write+0x2f4/0x368 ksys_write+0x7c/0xec __arm64_sys_write+0x20/0x30 el0_svc_common.llvm.7279915941325364641+0xbc/0x1bc do_el0_svc+0x28/0xa0 el0_svc+0x14/0x24 el0_sync_handler+0x88/0xec el0_sync+0x1c0/0x200 While at it, fix the possible NULL pointer dereference in other functions as well: of_thermal_get_temp(), of_thermal_set_emul_temp(), of_thermal_get_trend().

References

►

URL

Tags

	https://git.kernel.org/stable/c/828f4c31684da94ecf0b44a2cbd35bbede04f0bd
	https://git.kernel.org/stable/c/6a315471cb6a07f651e1d3adc8962730f4fcccac
	https://git.kernel.org/stable/c/0750f769b95841b34a9fe8c418dd792ff526bf86
	https://git.kernel.org/stable/c/ef2590a5305e0b8e9342f84c2214aa478ee7f28e
	https://git.kernel.org/stable/c/96cfe05051fd8543cdedd6807ec59a0e6c409195

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T05:32:07.362Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/828f4c31684da94ecf0b44a2cbd35bbede04f0bd"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/6a315471cb6a07f651e1d3adc8962730f4fcccac"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0750f769b95841b34a9fe8c418dd792ff526bf86"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/ef2590a5305e0b8e9342f84c2214aa478ee7f28e"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/96cfe05051fd8543cdedd6807ec59a0e6c409195"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-47202",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:49:58.504831Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:37.039Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/thermal/thermal_of.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "828f4c31684da94ecf0b44a2cbd35bbede04f0bd",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "6a315471cb6a07f651e1d3adc8962730f4fcccac",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "0750f769b95841b34a9fe8c418dd792ff526bf86",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "ef2590a5305e0b8e9342f84c2214aa478ee7f28e",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "96cfe05051fd8543cdedd6807ec59a0e6c409195",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/thermal/thermal_of.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.81",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.14.*",
              "status": "unaffected",
              "version": "5.14.21",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.4",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "5.16",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.210",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.81",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.14.21",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nthermal: Fix NULL pointer dereferences in of_thermal_ functions\n\nof_parse_thermal_zones() parses the thermal-zones node and registers a\nthermal_zone device for each subnode. However, if a thermal zone is\nconsuming a thermal sensor and that thermal sensor device hasn\u0027t probed\nyet, an attempt to set trip_point_*_temp for that thermal zone device\ncan cause a NULL pointer dereference. Fix it.\n\n console:/sys/class/thermal/thermal_zone87 # echo 120000 \u003e trip_point_0_temp\n ...\n Unable to handle kernel NULL pointer dereference at virtual address 0000000000000020\n ...\n Call trace:\n  of_thermal_set_trip_temp+0x40/0xc4\n  trip_point_temp_store+0xc0/0x1dc\n  dev_attr_store+0x38/0x88\n  sysfs_kf_write+0x64/0xc0\n  kernfs_fop_write_iter+0x108/0x1d0\n  vfs_write+0x2f4/0x368\n  ksys_write+0x7c/0xec\n  __arm64_sys_write+0x20/0x30\n  el0_svc_common.llvm.7279915941325364641+0xbc/0x1bc\n  do_el0_svc+0x28/0xa0\n  el0_svc+0x14/0x24\n  el0_sync_handler+0x88/0xec\n  el0_sync+0x1c0/0x200\n\nWhile at it, fix the possible NULL pointer dereference in other\nfunctions as well: of_thermal_get_temp(), of_thermal_set_emul_temp(),\nof_thermal_get_trend()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:06:18.337Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/828f4c31684da94ecf0b44a2cbd35bbede04f0bd"
        },
        {
          "url": "https://git.kernel.org/stable/c/6a315471cb6a07f651e1d3adc8962730f4fcccac"
        },
        {
          "url": "https://git.kernel.org/stable/c/0750f769b95841b34a9fe8c418dd792ff526bf86"
        },
        {
          "url": "https://git.kernel.org/stable/c/ef2590a5305e0b8e9342f84c2214aa478ee7f28e"
        },
        {
          "url": "https://git.kernel.org/stable/c/96cfe05051fd8543cdedd6807ec59a0e6c409195"
        }
      ],
      "title": "thermal: Fix NULL pointer dereferences in of_thermal_ functions",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2021-47202",
    "datePublished": "2024-04-10T18:56:36.408Z",
    "dateReserved": "2024-03-25T09:12:14.117Z",
    "dateUpdated": "2025-05-04T07:06:18.337Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26675 (GCVE-0-2024-26675)

Vulnerability from cvelistv5

Published

2024-04-02 07:01

Modified

2025-05-04 08:53

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: ppp_async: limit MRU to 64K syzbot triggered a warning [1] in __alloc_pages(): WARN_ON_ONCE_GFP(order > MAX_PAGE_ORDER, gfp) Willem fixed a similar issue in commit c0a2a1b0d631 ("ppp: limit MRU to 64K") Adopt the same sanity check for ppp_async_ioctl(PPPIOCSMRU) [1]: WARNING: CPU: 1 PID: 11 at mm/page_alloc.c:4543 __alloc_pages+0x308/0x698 mm/page_alloc.c:4543 Modules linked in: CPU: 1 PID: 11 Comm: kworker/u4:0 Not tainted 6.8.0-rc2-syzkaller-g41bccc98fb79 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 Workqueue: events_unbound flush_to_ldisc pstate: 204000c5 (nzCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : __alloc_pages+0x308/0x698 mm/page_alloc.c:4543 lr : __alloc_pages+0xc8/0x698 mm/page_alloc.c:4537 sp : ffff800093967580 x29: ffff800093967660 x28: ffff8000939675a0 x27: dfff800000000000 x26: ffff70001272ceb4 x25: 0000000000000000 x24: ffff8000939675c0 x23: 0000000000000000 x22: 0000000000060820 x21: 1ffff0001272ceb8 x20: ffff8000939675e0 x19: 0000000000000010 x18: ffff800093967120 x17: ffff800083bded5c x16: ffff80008ac97500 x15: 0000000000000005 x14: 1ffff0001272cebc x13: 0000000000000000 x12: 0000000000000000 x11: ffff70001272cec1 x10: 1ffff0001272cec0 x9 : 0000000000000001 x8 : ffff800091c91000 x7 : 0000000000000000 x6 : 000000000000003f x5 : 00000000ffffffff x4 : 0000000000000000 x3 : 0000000000000020 x2 : 0000000000000008 x1 : 0000000000000000 x0 : ffff8000939675e0 Call trace: __alloc_pages+0x308/0x698 mm/page_alloc.c:4543 __alloc_pages_node include/linux/gfp.h:238 [inline] alloc_pages_node include/linux/gfp.h:261 [inline] __kmalloc_large_node+0xbc/0x1fc mm/slub.c:3926 __do_kmalloc_node mm/slub.c:3969 [inline] __kmalloc_node_track_caller+0x418/0x620 mm/slub.c:4001 kmalloc_reserve+0x17c/0x23c net/core/skbuff.c:590 __alloc_skb+0x1c8/0x3d8 net/core/skbuff.c:651 __netdev_alloc_skb+0xb8/0x3e8 net/core/skbuff.c:715 netdev_alloc_skb include/linux/skbuff.h:3235 [inline] dev_alloc_skb include/linux/skbuff.h:3248 [inline] ppp_async_input drivers/net/ppp/ppp_async.c:863 [inline] ppp_asynctty_receive+0x588/0x186c drivers/net/ppp/ppp_async.c:341 tty_ldisc_receive_buf+0x12c/0x15c drivers/tty/tty_buffer.c:390 tty_port_default_receive_buf+0x74/0xac drivers/tty/tty_port.c:37 receive_buf drivers/tty/tty_buffer.c:444 [inline] flush_to_ldisc+0x284/0x6e4 drivers/tty/tty_buffer.c:494 process_one_work+0x694/0x1204 kernel/workqueue.c:2633 process_scheduled_works kernel/workqueue.c:2706 [inline] worker_thread+0x938/0xef4 kernel/workqueue.c:2787 kthread+0x288/0x310 kernel/kthread.c:388 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:860

References

►

URL

Tags

	https://git.kernel.org/stable/c/4fdb14ba89faff6e6969a4dffdc8e54235d6e5ed
	https://git.kernel.org/stable/c/56fae81633ccee307cfcb032f706bf1863a56982
	https://git.kernel.org/stable/c/b06e067e93fa4b98acfd3a9f38a398ab91bbc58b
	https://git.kernel.org/stable/c/58fbe665b097bf7b3144da7e7b91fb27aa8d0ae3
	https://git.kernel.org/stable/c/4e2c4846b2507f6dfc9bea72b7567c2693a82a16
	https://git.kernel.org/stable/c/7e5ef49670766c9742ffcd9cead7cdb018268719
	https://git.kernel.org/stable/c/210d938f963dddc543b07e66a79b7d8d4bd00bd8
	https://git.kernel.org/stable/c/cb88cb53badb8aeb3955ad6ce80b07b598e310b8

Impacted products

Vendor

Product

Version

►

Linux

Version: 2.6.12

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:12.841Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4fdb14ba89faff6e6969a4dffdc8e54235d6e5ed"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/56fae81633ccee307cfcb032f706bf1863a56982"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/b06e067e93fa4b98acfd3a9f38a398ab91bbc58b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/58fbe665b097bf7b3144da7e7b91fb27aa8d0ae3"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/4e2c4846b2507f6dfc9bea72b7567c2693a82a16"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/7e5ef49670766c9742ffcd9cead7cdb018268719"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/210d938f963dddc543b07e66a79b7d8d4bd00bd8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cb88cb53badb8aeb3955ad6ce80b07b598e310b8"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26675",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-10T15:53:26.335519Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-11T17:33:36.657Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ppp/ppp_async.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "4fdb14ba89faff6e6969a4dffdc8e54235d6e5ed",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "56fae81633ccee307cfcb032f706bf1863a56982",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "b06e067e93fa4b98acfd3a9f38a398ab91bbc58b",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "58fbe665b097bf7b3144da7e7b91fb27aa8d0ae3",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "4e2c4846b2507f6dfc9bea72b7567c2693a82a16",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "7e5ef49670766c9742ffcd9cead7cdb018268719",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "210d938f963dddc543b07e66a79b7d8d4bd00bd8",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "cb88cb53badb8aeb3955ad6ce80b07b598e310b8",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/net/ppp/ppp_async.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.12"
            },
            {
              "lessThan": "2.6.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.307",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.269",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.210",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.149",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.78",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.17",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.5",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.307",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.269",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.210",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.149",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.78",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.17",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.5",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nppp_async: limit MRU to 64K\n\nsyzbot triggered a warning [1] in __alloc_pages():\n\nWARN_ON_ONCE_GFP(order \u003e MAX_PAGE_ORDER, gfp)\n\nWillem fixed a similar issue in commit c0a2a1b0d631 (\"ppp: limit MRU to 64K\")\n\nAdopt the same sanity check for ppp_async_ioctl(PPPIOCSMRU)\n\n[1]:\n\n WARNING: CPU: 1 PID: 11 at mm/page_alloc.c:4543 __alloc_pages+0x308/0x698 mm/page_alloc.c:4543\nModules linked in:\nCPU: 1 PID: 11 Comm: kworker/u4:0 Not tainted 6.8.0-rc2-syzkaller-g41bccc98fb79 #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023\nWorkqueue: events_unbound flush_to_ldisc\npstate: 204000c5 (nzCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __alloc_pages+0x308/0x698 mm/page_alloc.c:4543\n lr : __alloc_pages+0xc8/0x698 mm/page_alloc.c:4537\nsp : ffff800093967580\nx29: ffff800093967660 x28: ffff8000939675a0 x27: dfff800000000000\nx26: ffff70001272ceb4 x25: 0000000000000000 x24: ffff8000939675c0\nx23: 0000000000000000 x22: 0000000000060820 x21: 1ffff0001272ceb8\nx20: ffff8000939675e0 x19: 0000000000000010 x18: ffff800093967120\nx17: ffff800083bded5c x16: ffff80008ac97500 x15: 0000000000000005\nx14: 1ffff0001272cebc x13: 0000000000000000 x12: 0000000000000000\nx11: ffff70001272cec1 x10: 1ffff0001272cec0 x9 : 0000000000000001\nx8 : ffff800091c91000 x7 : 0000000000000000 x6 : 000000000000003f\nx5 : 00000000ffffffff x4 : 0000000000000000 x3 : 0000000000000020\nx2 : 0000000000000008 x1 : 0000000000000000 x0 : ffff8000939675e0\nCall trace:\n  __alloc_pages+0x308/0x698 mm/page_alloc.c:4543\n  __alloc_pages_node include/linux/gfp.h:238 [inline]\n  alloc_pages_node include/linux/gfp.h:261 [inline]\n  __kmalloc_large_node+0xbc/0x1fc mm/slub.c:3926\n  __do_kmalloc_node mm/slub.c:3969 [inline]\n  __kmalloc_node_track_caller+0x418/0x620 mm/slub.c:4001\n  kmalloc_reserve+0x17c/0x23c net/core/skbuff.c:590\n  __alloc_skb+0x1c8/0x3d8 net/core/skbuff.c:651\n  __netdev_alloc_skb+0xb8/0x3e8 net/core/skbuff.c:715\n  netdev_alloc_skb include/linux/skbuff.h:3235 [inline]\n  dev_alloc_skb include/linux/skbuff.h:3248 [inline]\n  ppp_async_input drivers/net/ppp/ppp_async.c:863 [inline]\n  ppp_asynctty_receive+0x588/0x186c drivers/net/ppp/ppp_async.c:341\n  tty_ldisc_receive_buf+0x12c/0x15c drivers/tty/tty_buffer.c:390\n  tty_port_default_receive_buf+0x74/0xac drivers/tty/tty_port.c:37\n  receive_buf drivers/tty/tty_buffer.c:444 [inline]\n  flush_to_ldisc+0x284/0x6e4 drivers/tty/tty_buffer.c:494\n  process_one_work+0x694/0x1204 kernel/workqueue.c:2633\n  process_scheduled_works kernel/workqueue.c:2706 [inline]\n  worker_thread+0x938/0xef4 kernel/workqueue.c:2787\n  kthread+0x288/0x310 kernel/kthread.c:388\n  ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:860"
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:53:42.211Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/4fdb14ba89faff6e6969a4dffdc8e54235d6e5ed"
        },
        {
          "url": "https://git.kernel.org/stable/c/56fae81633ccee307cfcb032f706bf1863a56982"
        },
        {
          "url": "https://git.kernel.org/stable/c/b06e067e93fa4b98acfd3a9f38a398ab91bbc58b"
        },
        {
          "url": "https://git.kernel.org/stable/c/58fbe665b097bf7b3144da7e7b91fb27aa8d0ae3"
        },
        {
          "url": "https://git.kernel.org/stable/c/4e2c4846b2507f6dfc9bea72b7567c2693a82a16"
        },
        {
          "url": "https://git.kernel.org/stable/c/7e5ef49670766c9742ffcd9cead7cdb018268719"
        },
        {
          "url": "https://git.kernel.org/stable/c/210d938f963dddc543b07e66a79b7d8d4bd00bd8"
        },
        {
          "url": "https://git.kernel.org/stable/c/cb88cb53badb8aeb3955ad6ce80b07b598e310b8"
        }
      ],
      "title": "ppp_async: limit MRU to 64K",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26675",
    "datePublished": "2024-04-02T07:01:40.054Z",
    "dateReserved": "2024-02-19T14:20:24.151Z",
    "dateUpdated": "2025-05-04T08:53:42.211Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-26817 (GCVE-0-2024-26817)

Vulnerability from cvelistv5

Published

2024-04-13 11:17

Modified

2025-05-04 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer overflow This uses calloc instead of doing the multiplication which might overflow.

References

►

URL

Tags

	https://git.kernel.org/stable/c/e6721ea845fcb93a764a92bd40f1afc0d6c69751
	https://git.kernel.org/stable/c/8b0564704255c6b3c6a7188e86939f754e1577c0
	https://git.kernel.org/stable/c/fcbd99b3c73309107e3be71f20dff9414df64f91
	https://git.kernel.org/stable/c/cbac7de1d9901521e78cdc34e15451df3611f2ad
	https://git.kernel.org/stable/c/e6768c6737f4c02cba193a3339f0cc2907f0b86a
	https://git.kernel.org/stable/c/315eb3c2df7e4cb18e3eacfa18a53a46f2bf0ef7
	https://git.kernel.org/stable/c/0c33d11153949310d76631d8f4a4736519eacd3a
	https://git.kernel.org/stable/c/3b0daecfeac0103aba8b293df07a0cbaf8b43f29

Impacted products

Vendor

Product

Version

►

Linux

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-26817",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-15T12:56:37.523191Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-05T17:22:41.285Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T00:14:13.629Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e6721ea845fcb93a764a92bd40f1afc0d6c69751"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/8b0564704255c6b3c6a7188e86939f754e1577c0"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/fcbd99b3c73309107e3be71f20dff9414df64f91"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/cbac7de1d9901521e78cdc34e15451df3611f2ad"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/e6768c6737f4c02cba193a3339f0cc2907f0b86a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/315eb3c2df7e4cb18e3eacfa18a53a46f2bf0ef7"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/0c33d11153949310d76631d8f4a4736519eacd3a"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3b0daecfeac0103aba8b293df07a0cbaf8b43f29"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdkfd/kfd_chardev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "e6721ea845fcb93a764a92bd40f1afc0d6c69751",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "8b0564704255c6b3c6a7188e86939f754e1577c0",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "fcbd99b3c73309107e3be71f20dff9414df64f91",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "cbac7de1d9901521e78cdc34e15451df3611f2ad",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "e6768c6737f4c02cba193a3339f0cc2907f0b86a",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "315eb3c2df7e4cb18e3eacfa18a53a46f2bf0ef7",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "0c33d11153949310d76631d8f4a4736519eacd3a",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "3b0daecfeac0103aba8b293df07a0cbaf8b43f29",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/gpu/drm/amd/amdkfd/kfd_chardev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.312",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.274",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.215",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.155",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.86",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.27",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.8.*",
              "status": "unaffected",
              "version": "6.8.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.9",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.312",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.274",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.215",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.155",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.86",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.27",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8.6",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.9",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\namdkfd: use calloc instead of kzalloc to avoid integer overflow\n\nThis uses calloc instead of doing the multiplication which might\noverflow."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T08:57:14.571Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/e6721ea845fcb93a764a92bd40f1afc0d6c69751"
        },
        {
          "url": "https://git.kernel.org/stable/c/8b0564704255c6b3c6a7188e86939f754e1577c0"
        },
        {
          "url": "https://git.kernel.org/stable/c/fcbd99b3c73309107e3be71f20dff9414df64f91"
        },
        {
          "url": "https://git.kernel.org/stable/c/cbac7de1d9901521e78cdc34e15451df3611f2ad"
        },
        {
          "url": "https://git.kernel.org/stable/c/e6768c6737f4c02cba193a3339f0cc2907f0b86a"
        },
        {
          "url": "https://git.kernel.org/stable/c/315eb3c2df7e4cb18e3eacfa18a53a46f2bf0ef7"
        },
        {
          "url": "https://git.kernel.org/stable/c/0c33d11153949310d76631d8f4a4736519eacd3a"
        },
        {
          "url": "https://git.kernel.org/stable/c/3b0daecfeac0103aba8b293df07a0cbaf8b43f29"
        }
      ],
      "title": "amdkfd: use calloc instead of kzalloc to avoid integer overflow",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2024-26817",
    "datePublished": "2024-04-13T11:17:08.764Z",
    "dateReserved": "2024-02-19T14:20:24.180Z",
    "dateUpdated": "2025-05-04T08:57:14.571Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-2860 (GCVE-0-2023-2860)

Vulnerability from cvelistv5

Published

2023-07-24 15:19

Modified

2025-03-05 18:47

Severity ?

4.4 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CWE

CWE-125 - Out-of-bounds Read

Summary

An out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. The flaw exists within the processing of seg6 attributes. The issue results from the improper validation of user-supplied data, which can result in a read past the end of an allocated buffer. This flaw allows a privileged local user to disclose sensitive information on affected installations of the Linux kernel.

References

►

URL

Tags

	https://access.redhat.com/security/cve/CVE-2023-2860	vdb-entry, x_refsource_REDHAT
	https://bugzilla.redhat.com/show_bug.cgi?id=2218122	issue-tracking, x_refsource_REDHAT
	https://www.zerodayinitiative.com/advisories/ZDI-CAN-18511

Impacted products

Vendor

Product

Version

►

n/a

kernel

Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 8	cpe:/o:redhat:enterprise_linux:8
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9
Fedora	Fedora

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T06:33:05.705Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2023-2860"
          },
          {
            "name": "RHBZ#2218122",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218122"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.zerodayinitiative.com/advisories/ZDI-CAN-18511"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-2860",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-03-05T18:34:11.695046Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-05T18:47:56.873Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "kernel",
          "vendor": "n/a",
          "versions": [
            {
              "status": "unaffected",
              "version": "6.0-rc5"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:8"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "unaffected",
          "packageName": "kernel-rt",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://packages.fedoraproject.org/",
          "defaultStatus": "unaffected",
          "packageName": "kernel",
          "product": "Fedora",
          "vendor": "Fedora"
        }
      ],
      "datePublic": "2022-09-05T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "An out-of-bounds read vulnerability was found in the SR-IPv6 implementation in the Linux kernel. The flaw exists within the processing of seg6 attributes. The issue results from the improper validation of user-supplied data, which can result in a read past the end of an allocated buffer. This flaw allows a privileged local user to disclose sensitive information on affected installations of the Linux kernel."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-125",
              "description": "Out-of-bounds Read",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-01-23T03:20:36.395Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2023-2860"
        },
        {
          "name": "RHBZ#2218122",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218122"
        },
        {
          "url": "https://www.zerodayinitiative.com/advisories/ZDI-CAN-18511"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2023-06-28T00:00:00+00:00",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2022-09-05T00:00:00+00:00",
          "value": "Made public."
        }
      ],
      "title": "Out-of-bounds read when setting hmac data",
      "x_redhatCweChain": "CWE-125: Out-of-bounds Read"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2023-2860",
    "datePublished": "2023-07-24T15:19:18.473Z",
    "dateReserved": "2023-05-24T07:11:24.194Z",
    "dateUpdated": "2025-03-05T18:47:56.873Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-52645 (GCVE-0-2023-52645)

Vulnerability from cvelistv5

Published

2024-04-17 15:59

Modified

2025-05-04 07:40

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix race conditions with genpd If the power domains are registered first with genpd and *after that* the driver attempts to power them on in the probe sequence, then it is possible that a race condition occurs if genpd tries to power them on in the same time. The same is valid for powering them off before unregistering them from genpd. Attempt to fix race conditions by first removing the domains from genpd and *after that* powering down domains. Also first power up the domains and *after that* register them to genpd.

References

►

URL

Tags

	https://git.kernel.org/stable/c/475426ad1ae0bfdfd8f160ed9750903799392438
	https://git.kernel.org/stable/c/339ddc983bc1622341d95f244c361cda3da3a4ff
	https://git.kernel.org/stable/c/f83b9abee9faa4868a6fac4669b86f4c215dae25
	https://git.kernel.org/stable/c/3cd1d92ee1dbf3e8f988767eb75f26207397792b
	https://git.kernel.org/stable/c/c41336f4d69057cbf88fed47951379b384540df5

Impacted products

Vendor

Product

Version

►

Linux

Version: 59b644b01cf48d6042f3c5983d464921a4920845
Version: 59b644b01cf48d6042f3c5983d464921a4920845
Version: 59b644b01cf48d6042f3c5983d464921a4920845
Version: 59b644b01cf48d6042f3c5983d464921a4920845
Version: 59b644b01cf48d6042f3c5983d464921a4920845

Linux

Version: 5.11

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-52645",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-06-17T17:41:05.492458Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-17T17:47:27.898Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:03:21.361Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/475426ad1ae0bfdfd8f160ed9750903799392438"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/339ddc983bc1622341d95f244c361cda3da3a4ff"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/f83b9abee9faa4868a6fac4669b86f4c215dae25"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/3cd1d92ee1dbf3e8f988767eb75f26207397792b"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://git.kernel.org/stable/c/c41336f4d69057cbf88fed47951379b384540df5"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/pmdomain/mediatek/mtk-pm-domains.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "475426ad1ae0bfdfd8f160ed9750903799392438",
              "status": "affected",
              "version": "59b644b01cf48d6042f3c5983d464921a4920845",
              "versionType": "git"
            },
            {
              "lessThan": "339ddc983bc1622341d95f244c361cda3da3a4ff",
              "status": "affected",
              "version": "59b644b01cf48d6042f3c5983d464921a4920845",
              "versionType": "git"
            },
            {
              "lessThan": "f83b9abee9faa4868a6fac4669b86f4c215dae25",
              "status": "affected",
              "version": "59b644b01cf48d6042f3c5983d464921a4920845",
              "versionType": "git"
            },
            {
              "lessThan": "3cd1d92ee1dbf3e8f988767eb75f26207397792b",
              "status": "affected",
              "version": "59b644b01cf48d6042f3c5983d464921a4920845",
              "versionType": "git"
            },
            {
              "lessThan": "c41336f4d69057cbf88fed47951379b384540df5",
              "status": "affected",
              "version": "59b644b01cf48d6042f3c5983d464921a4920845",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/pmdomain/mediatek/mtk-pm-domains.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "5.11"
            },
            {
              "lessThan": "5.11",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.150",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.80",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.18",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.7.*",
              "status": "unaffected",
              "version": "6.7.6",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.8",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.150",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.80",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.18",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.7.6",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.8",
                  "versionStartIncluding": "5.11",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\npmdomain: mediatek: fix race conditions with genpd\n\nIf the power domains are registered first with genpd and *after that*\nthe driver attempts to power them on in the probe sequence, then it is\npossible that a race condition occurs if genpd tries to power them on\nin the same time.\nThe same is valid for powering them off before unregistering them\nfrom genpd.\nAttempt to fix race conditions by first removing the domains from genpd\nand *after that* powering down domains.\nAlso first power up the domains and *after that* register them\nto genpd."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-05-04T07:40:46.087Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/475426ad1ae0bfdfd8f160ed9750903799392438"
        },
        {
          "url": "https://git.kernel.org/stable/c/339ddc983bc1622341d95f244c361cda3da3a4ff"
        },
        {
          "url": "https://git.kernel.org/stable/c/f83b9abee9faa4868a6fac4669b86f4c215dae25"
        },
        {
          "url": "https://git.kernel.org/stable/c/3cd1d92ee1dbf3e8f988767eb75f26207397792b"
        },
        {
          "url": "https://git.kernel.org/stable/c/c41336f4d69057cbf88fed47951379b384540df5"
        }
      ],
      "title": "pmdomain: mediatek: fix race conditions with genpd",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-52645",
    "datePublished": "2024-04-17T15:59:21.343Z",
    "dateReserved": "2024-03-06T09:52:12.094Z",
    "dateUpdated": "2025-05-04T07:40:46.087Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

suse-su-2024:1644-1

Vulnerability from csaf_suse

CVE-2024-26927 (GCVE-0-2024-26927)

Vulnerability from cvelistv5

CVE-2024-26764 (GCVE-0-2024-26764)

Vulnerability from cvelistv5

CVE-2024-26830 (GCVE-0-2024-26830)

Vulnerability from cvelistv5

CVE-2024-26969 (GCVE-0-2024-26969)

Vulnerability from cvelistv5

CVE-2024-26891 (GCVE-0-2024-26891)

Vulnerability from cvelistv5

CVE-2022-48647 (GCVE-0-2022-48647)

Vulnerability from cvelistv5

CVE-2023-52593 (GCVE-0-2023-52593)

Vulnerability from cvelistv5

CVE-2024-27056 (GCVE-0-2024-27056)

Vulnerability from cvelistv5

CVE-2021-47206 (GCVE-0-2021-47206)

Vulnerability from cvelistv5

CVE-2021-47212 (GCVE-0-2021-47212)

Vulnerability from cvelistv5

CVE-2022-48701 (GCVE-0-2022-48701)

Vulnerability from cvelistv5

CVE-2024-26601 (GCVE-0-2024-26601)

Vulnerability from cvelistv5

CVE-2024-26688 (GCVE-0-2024-26688)

Vulnerability from cvelistv5

CVE-2024-26702 (GCVE-0-2024-26702)

Vulnerability from cvelistv5

CVE-2024-26993 (GCVE-0-2024-26993)

Vulnerability from cvelistv5

CVE-2024-26853 (GCVE-0-2024-26853)

Vulnerability from cvelistv5

CVE-2021-47201 (GCVE-0-2021-47201)

Vulnerability from cvelistv5

CVE-2022-48654 (GCVE-0-2022-48654)

Vulnerability from cvelistv5

CVE-2022-48646 (GCVE-0-2022-48646)

Vulnerability from cvelistv5

CVE-2024-27389 (GCVE-0-2024-27389)

Vulnerability from cvelistv5

CVE-2024-26915 (GCVE-0-2024-26915)

Vulnerability from cvelistv5

CVE-2022-48694 (GCVE-0-2022-48694)

Vulnerability from cvelistv5

CVE-2021-47204 (GCVE-0-2021-47204)

Vulnerability from cvelistv5

CVE-2021-47197 (GCVE-0-2021-47197)

Vulnerability from cvelistv5

CVE-2023-6270 (GCVE-0-2023-6270)

Vulnerability from cvelistv5

CVE-2024-27039 (GCVE-0-2024-27039)

Vulnerability from cvelistv5

CVE-2023-52635 (GCVE-0-2023-52635)

Vulnerability from cvelistv5

CVE-2022-48699 (GCVE-0-2022-48699)

Vulnerability from cvelistv5

CVE-2023-52646 (GCVE-0-2023-52646)

Vulnerability from cvelistv5

CVE-2022-48658 (GCVE-0-2022-48658)

Vulnerability from cvelistv5

CVE-2024-26955 (GCVE-0-2024-26955)

Vulnerability from cvelistv5

CVE-2024-27041 (GCVE-0-2024-27041)

Vulnerability from cvelistv5

CVE-2022-48688 (GCVE-0-2022-48688)

Vulnerability from cvelistv5

CVE-2024-26733 (GCVE-0-2024-26733)

Vulnerability from cvelistv5

CVE-2024-27062 (GCVE-0-2024-27062)

Vulnerability from cvelistv5

CVE-2022-48690 (GCVE-0-2022-48690)

Vulnerability from cvelistv5

CVE-2022-48703 (GCVE-0-2022-48703)

Vulnerability from cvelistv5

CVE-2021-47216 (GCVE-0-2021-47216)

Vulnerability from cvelistv5

CVE-2022-48667 (GCVE-0-2022-48667)